CVE-2005-1637 Information

Description

Multiple SQL injection vulnerabilities in NPDS 4.8 and 5.0 allow remote attackers to execute arbitrary SQL commands via the thold parameter to (1) comments.php or (2) pollcomments.php.

Reference

http://securitytracker.com/id?1013973 http://www.npds.org/article.php?sid=1258