CVE-2005-3363

N/A Unknown

Published: October 30, 2005 Modified: April 16, 2026

Description

SQL injection vulnerability in Saphp Lesson, possibly saphp Lesson1.1 and saphpLesson2.0, allows remote attackers to execute arbitrary SQL commands via the forumid parameter in (1) showcat.php and (2) add.php.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://marc.info/?l=bugtraq&m=113018965520240&w=2

Source: cve@mitre.org

http://secunia.com/advisories/17308/

Source: cve@mitre.org

Vendor Advisory

http://securityreason.com/securityalert/111

Source: cve@mitre.org

http://www.attrition.org/pipermail/vim/2005-October/000313.html

Source: cve@mitre.org

http://www.osvdb.org/20289

Source: cve@mitre.org

http://www.osvdb.org/20290

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/430906/30/5610/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/440120/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/472799/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/15185

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/22861

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/27746

Source: cve@mitre.org

https://www.exploit-db.com/exploits/1530

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=113018965520240&w=2