CVE-2005-1839 Information

Description

Multiple SQL injection vulnerabilities in Doug Luxem Liberum Help Desk 0.97.3 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) view.asp or (2) print.asp or (3) edit parameter to register.asp.

Reference

http://echo.or.id/adv/adv14-theday-2005.txt http://marc.info/?l=bugtraq&m=111773586701991&w=2 http://secunia.com/advisories/15593