Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Nov 27, 2005· Updated Apr 16, 2026

CVE-2005-3855

CVE-2005-3855

Description

SQL injection vulnerability in process.php in 1-2-3 music store allows remote attackers to execute arbitrary SQL commands via the AlbumID parameter.

Affected products

1

Easybe/1 2 3 Music Store
cpe:2.3:a:easybe:1-2-3_music_store:1.0:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

secunia.com/advisories/17683nvdExploitVendor Advisory
www.osvdb.org/21074nvdExploit
www.securityfocus.com/bid/15544nvdExploit
pridels0.blogspot.com/2005/11/1-2-3-music-store-albumid-sql.htmlnvd
www.vupen.com/english/advisories/2005/2549nvd

News mentions

0

No linked articles in our index yet.