Unrated severityNVD Advisory· Published May 11, 2005· Updated Apr 16, 2026
CVE-2005-1562
CVE-2005-1562
Description
Multiple SQL injection vulnerabilities in MaxWebPortal 1.3.5 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) fpassword parameter to inc_functions.asp, (2) txtAddress, (3) message, or (4) subject parameter to post_info.asp, (5) andor parameter to search.asp, (6) verkey parameter to pop_profile.asp, or (7) Remove or (8) Delete parameter to pm_delete2.asp.
Affected products
8cpe:2.3:a:maxwebportal:maxwebportal:1.3.0:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:maxwebportal:maxwebportal:1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:maxwebportal:maxwebportal:1.30:*:*:*:*:*:*:*
- cpe:2.3:a:maxwebportal:maxwebportal:1.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:maxwebportal:maxwebportal:1.31:*:*:*:*:*:*:*
- cpe:2.3:a:maxwebportal:maxwebportal:1.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:maxwebportal:maxwebportal:1.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:maxwebportal:maxwebportal:1.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:maxwebportal:maxwebportal:2.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
10- secunia.com/advisories/15329nvdPatchVendor Advisory
- www.hackerscenter.com/archive/view.aspnvdExploitVendor Advisory
- www.securityfocus.com/bid/13601nvdVendor Advisory
- marc.infonvd
- www.osvdb.org/16502nvd
- www.osvdb.org/16503nvd
- www.osvdb.org/16504nvd
- www.osvdb.org/16506nvd
- www.osvdb.org/16510nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/20562nvd
News mentions
0No linked articles in our index yet.