Intrusion Prevention

Arki-DB.index.PHP.SQL.Injection

Description

It indicates a possible exploit of a SQL injection vulnerability in Arki-DB.
This flaw is due to an input validation error in the "index.php" script, that does not properly filter a specially crafted "catid" parameter, which may be exploited by malicious users to conduct SQL injection attacks.

Affected Products

Arki-DB version 1.0

Impact

The execution of arbitrary SQL commands on the system.

Recommended Actions

Upgrade to the latest version of the vulnerable software.

CVE References

CVE-2005-3696