CVE-2005-4656 Information

Description

SQL injection vulnerability in index.php in TClanPortal 1.1.3 and earlier allows remote attackers to execute arbitrary SQL commands and retrieve all usernames and passwords via the id parameter.

Reference

http://downloads.securityfocus.com/vulnerabilities/exploits/TClanPortal_sql_inj.pl http://secunia.com/advisories/17324 http://www.osvdb.org/20305 http://www.securityfocus.com/bid/15173 http://www.vupen.com/english/advisories/2005/2187 https://exchange.xforce.ibmcloud.com/vulnerabilities/22869