VYPR
Unrated severityNVD Advisory· Published Nov 16, 2005· Updated Jun 16, 2026

CVE-2005-3553

CVE-2005-3553

Description

Multiple SQL injection vulnerabilities in include.php in PHPKIT 1.6.1 R2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in conjunction with the login/userinfo.php path and (2) the session parameter (aka the PHPKITSID variable).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Phpkit/Phpkit2 versions
    cpe:2.3:a:phpkit:phpkit:*:rc2:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:phpkit:phpkit:*:rc2:*:*:*:*:*:*range: <=1.6.1
    • (no CPE)range: <=1.6.1 R2

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.