Detections
Analytics
CVE-2005-4264
critical
Description
Multiple SQL injection vulnerabilities in index.php in PHP Support Tickets 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password fields, and (3) id parameter.
References
http://www.vupen.com/english/advisories/2005/2928
http://www.securityfocus.com/bid/15853
http://www.nii.co.in/vuln/PHPSupportTickets.html