CVE-2005-3762 Information

Description

SQL injection vulnerability in the navigation module (navigationmodule) in Exponent CMS 0.96.3 and later versions allows remote attackers to execute arbitrary SQL commands via the parent parameter.

Reference

http://secunia.com/advisories/17505 http://secunia.com/advisories/17655 http://www.osvdb.org/21023 http://www.securityfocus.com/archive/1/417218 http://www.securityfocus.com/bid/15389 https://exchange.xforce.ibmcloud.com/vulnerabilities/23109