CVE-2005-2152 Information

Description

SQL injection vulnerability in Geeklog before 1.3.11 allows remote attackers to execute arbitrary SQL commands via user comments for an article.

Reference

http://secunia.com/advisories/15914 http://securitytracker.com/id?1014381 http://www.geeklog.net/article.php/geeklog-1.3.11sr1 http://www.hardened-php.net/advisory-062005.php