Vulnerabilities > CVE-2005-4221 - SQL Injection vulnerability in Arab Portal Arab Portal 2Beta2

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
arab-portal
exploit available
NVD
Published: 2005-12-14
Updated: 2018-10-19

Summary

SQL injection vulnerability in link.php in Arab Portal System 2 Beta 2 allows remote attackers to execute arbitrary SQL commands via the (1) PHPSESSID (session ID) or (2) REQUEST_URI (query string).

Vulnerable Configurations

Part Description Count
Application
Arab_Portal
1

Exploit-Db

descriptionArab Portal 2.0 Link.PHP SQL Injection Vulnerabilities. CVE-2005-4221. Webapps exploit for php platform
idEDB-ID:26785
last seen2016-02-03
modified2005-12-12
published2005-12-12
reporterstranger-killer
sourcehttps://www.exploit-db.com/download/26785/
titleArab Portal 2.0 Link.PHP SQL Injection Vulnerabilities

References