CVE-2005-3545 Information

Description

SQL injection vulnerability in index.php of the report module in ibProArcade 2.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter.

Reference

http://osvdb.org/20514 http://secunia.com/advisories/17457 http://securityreason.com/securityalert/151 http://www.ibproarcade.com/index.php?showtopic=7575&pid=47370&st=0&entry47370 http://www.ibproarcade.com/index.php?showtopic=7576&pid=47373&st=0&entry47373 http://www.securityfocus.com/archive/1/415793 http://www.securityfocus.com/bid/15333 http://www.vupen.com/english/advisories/2005/2334