VYPR
Unrated severityNVD Advisory· Published Nov 29, 2005· Updated Jun 16, 2026

CVE-2005-3877

CVE-2005-3877

Description

Multiple SQL injection vulnerabilities in Simple Document Management System (SDMS) 2.0-CVS and earlier allow remote attackers to execute arbitrary SQL commands via the (1) folder_id parameter in list.php and (2) mid parameter in a view action to messages.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • cpe:2.3:a:cafuego:simple_document_management_system:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:cafuego:simple_document_management_system:*:*:*:*:*:*:*:*range: <=2.0-cvs
    • cpe:2.3:a:cafuego:simple_document_management_system:1.1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:cafuego:simple_document_management_system:1.1.5:*:*:*:*:*:*:*
    • cpe:2.3:a:cafuego:simple_document_management_system:1.1.6:*:*:*:*:*:*:*
  • Range: <=2.0-CVS

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.