Vulnerabilities > FAQ System
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-12-01 | CVE-2005-3944 | SQL Injection vulnerability in Survey System Survey.PHP SQL injection vulnerability in survey.php in ilyav Survey System 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the SURVEY_ID parameter. | 7.5 |
2005-12-01 | CVE-2005-3943 | SQL Injection vulnerability in FAQ System Multiple SQL injection vulnerabilities in ilyav FAQ System 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) FAQ_ID and (2) action parameters in (a) viewFAQ.php; and (3) CATEGORY_ID parameter in (b) index.php. | 7.5 |