CVE-2005-0702 Information

Description

SQL injection vulnerability in phpMyFAQ 1.4 and 1.5 allows remote attackers to add FAQ records to the database via the username field in forum messages.

Reference

http://secunia.com/advisories/14516 http://www.phpmyfaq.de/advisory_2005-03-06.php