CVE-2005-2723

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
30/08/2005
Last modified:
03/04/2025

Description

SQL injection vulnerability in auth.php in PaFileDB 3.1, when authmethod is set to cookies, allows remote attackers to execute arbitrary SQL commands via the username value in the pafiledbcookie cookie.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:php_arena:pafiledb:3.1:*:*:*:*:*:*:*