Unrated severityNVD Advisory· Published May 2, 2005· Updated Jun 16, 2026
CVE-2005-0454
CVE-2005-0454
Description
Multiple SQL injection vulnerabilities in DCP-Portal 6.1.1 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the lcat, doc, or uid parameters to index.php, or (2) the mid or bid parameters to forums.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:codeworx_technologies:dcp-portal:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:codeworx_technologies:dcp-portal:*:*:*:*:*:*:*:*range: <=6.1.1
- (no CPE)range: <=6.1.1
Patches
Vulnerability mechanics
References
8- securitytracker.com/idnvdExploitVendor Advisory
- www.hackgen.org/advisories/hackgen-2005-003.txtnvdExploitVendor Advisory
- glide.stanford.edu/yichen/research/sec.pdfnvd
- marc.infonvd
- securityreason.com/securityalert/108nvd
- www.securityfocus.com/archive/1/419280/100/0/threadednvd
- www.securityfocus.com/bid/12573nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/19361nvd
News mentions
0No linked articles in our index yet.