Vulnerabilities > CVE-2005-3932 - SQL Injection vulnerability in O-Kiraku Nikki O-Kiraku Nikki 1.3

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
o-kiraku-nikki
exploit available

Summary

SQL injection vulnerability in okiraku.php in O-Kiraku Nikki 1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the day_id parameter.

Vulnerable Configurations

Part Description Count
Application
O-Kiraku_Nikki
1

Exploit-Db

descriptionO-Kiraku Nikki 1.3 Nikki.PHP SQL Injection Vulnerability. CVE-2005-3932. Webapps exploit for php platform
idEDB-ID:26683
last seen2016-02-03
modified2005-11-30
published2005-11-30
reporterr0t
sourcehttps://www.exploit-db.com/download/26683/
titleO-Kiraku Nikki 1.3 Nikki.PHP SQL Injection Vulnerability