CVE-2005-0475 Information

Description

SQL injection vulnerability in paFAQ Beta4 and possibly other versions allows remote attackers to execute arbitrary SQL code via the (1) offset (2) limit (3) order or (4) orderby parameter to question.php (5) offset parameter to answer.php (6) search_item parameter to search.php (7) cat_id (8) cid or (9) id parameter to comment.php.

Reference

http://marc.info/?l=bugtraq&m=110868808723487&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/19371