CVE-2005-0646 Information

Description

SQL injection vulnerability in auth.php in paNews 2.0.4b allows remote attackers to execute arbitrary SQL via the mysql_prefix parameter.

Reference

http://marc.info/?l=bugtraq&m=110969774502370&w=2 http://www.kernelpanik.org/docs/kernelpanik/panews.txt