Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2005-3555

Multiple SQL injection vulnerabilities in PHPlist 2.10.1 and earlier allow authenticated remote attackers with administrator privileges to execute arbitrary SQL commands via the id parameter in the (1) editattributes or (2) admin page.

  • Published: Nov 16, 2005
  • Updated: Apr 13, 2023
  • CVE: CVE-2005-3555
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.5
  • AV:N/AC:L/Au:S/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
tincan / phplist - 2.10.1.x