CVE-2005-4743 Information

Description

Multiple SQL injection vulnerabilities in index.php in NeLogic Nephp Publisher 4.5.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id and (2) nnet_catid parameters.

Reference

http://pridels0.blogspot.com/2005/11/nephp-publisher-v45x-sql-inj-vuln.html http://secunia.com/advisories/17772 http://www.osvdb.org/21196