Vulnerabilities > Omnistar Interactive > Omnistar Kbase
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-11-29 | CVE-2005-3880 | SQL Injection vulnerability in KBase Express Multiple SQL injection vulnerabilities in Omnistar KBase 4.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) article_id parameter in users/comments.php, (2) category_id and (3) id parameters in users/kb.php. | 7.5 |