Vulnerabilities > CVE-2005-4768 - SQL Injection vulnerability in TuxBank ManageAccount.PHP
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
SQL injection vulnerability in manage_account.php in Tux Racer TuxBank 0.7x and 0.8 allows remote attackers to execute arbitrary SQL commands via the id parameter in a manageaccount action to index.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |