CVE-2005-1364 Information
Feb 14, 2021
cve
Description
Multiple SQL injection vulnerabilities in MetaBid Auctions allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password fields in logIn.asp or (3) intAuctionID parameter to item.asp.
Reference
http://digitalparadox.org/advisories/metabid.txt http://marc.info/?l=bugtraq&m=111454192928364&w=2 http://secunia.com/advisories/15136 http://www.osvdb.org/15868 http://www.osvdb.org/15869 http://www.securityfocus.com/bid/13395 https://exchange.xforce.ibmcloud.com/vulnerabilities/20286
Share on: