Vulnerabilities > CVE-2005-3920 - SQL Injection vulnerability in Babe Logger Babe Logger 2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
SQL injection vulnerability in Babe Logger 2 allows remote attackers to execute arbitrary SQL commands via the (1) gal parameter to index.php or (2) id parameter to comments.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description Babe Logger V2 comments.php id Parameter SQL Injection. CVE-2005-3920 . Webapps exploit for php platform id EDB-ID:26606 last seen 2016-02-03 modified 2005-11-28 published 2005-11-28 reporter r0t source https://www.exploit-db.com/download/26606/ title Babe Logger 2.0 - comments.php id Parameter SQL Injection description Babe Logger V2 index.php gal Parameter SQL Injection. CVE-2005-3920. Webapps exploit for php platform id EDB-ID:26605 last seen 2016-02-03 modified 2005-11-28 published 2005-11-28 reporter r0t source https://www.exploit-db.com/download/26605/ title Babe Logger 2.0 - index.php gal Parameter SQL Injection