CVE-2005-1804

Net Portal Dynamic System - SQL Injection

Title source: rule

Description

Multiple SQL injection vulnerabilities in Net Portal Dynamic System (NPDS) 5.0 allow remote attackers to execute arbitrary SQL commands via the (1) terme parameter in the glossaire module (glossaire.php) or (2) query parameter to links.php.

Exploits (2)

exploitdb WORKING POC VERIFIED

by NoSP · textwebappsphp

https://www.exploit-db.com/exploits/25748

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by NoSP · textwebappsphp

https://www.exploit-db.com/exploits/25749

View Code ZIP pw:eip

References (2)

Core 2

Core References

Patch, Vendor Advisory vdb-entry x_refsource_sectrack

http://securitytracker.com/id?1014073

Patch, Vendor Advisory x_refsource_confirm

http://www.npds.org/download.php?op=geninfo&did=115

Scores

EPSS 0.0030

EPSS Percentile 53.1%

Details

Status published

Products (1)

net_portal_dynamic_system/net_portal_dynamic_system 5.0

Published May 29, 2005

Tracked Since Feb 18, 2026