CVE-2005-4643

Description

SQL injection vulnerability in index.php in Antharia OnContent // CMS allows remote attackers to execute arbitrary SQL commands via the pid parameter. NOTE: it is not clear, but this might be an application service provider, in which case it might be excluded from CVE.

Affected products

• antharia / oncontent_cms

References

• MISChttp://www.securityfocus.com/bid/15464
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/23072
• MISChttp://www.osvdb.org/20888
• VENDOR_ADVISORYhttp://secunia.com/advisories/17596
• MISChttp://osvdb.org/ref/20/20888-oncontent-sql.txt