CVE-2005-3846 in Fantastic Newsinfo

Summary

SQL injection vulnerability in news.php in Fantastic News 2.1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the category parameter.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsible

Reservation

11/26/2005

Disclosure

11/26/2005

Moderation

VulDB entry created

Entries

VDB-27119

CPE

ready

CWE

CWE-89 (Confirmed)

Exploit

Download

CVSS

7.3

EPSS

0.00677

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-3846
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-3846
CVE Details	https://www.cvedetails.com/cve/CVE-2005-3846/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!