VYPR
Unrated severityNVD Advisory· Published Dec 1, 2005· Updated Jun 16, 2026

CVE-2005-3938

CVE-2005-3938

Description

SQL injection vulnerability in Softbiz FAQ Script 1.1 and earler allows remote attackers to execute arbitrary SQL commands via the id parameter in (1) index.php, (2) faq_qanda.php, (3) refer_friend.php, (4) print_article.php, or (5) add_comment.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:softbizscripts:faq_script:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:softbizscripts:faq_script:*:*:*:*:*:*:*:*range: <=1.1
    • (no CPE)range: 1.1 and earlier

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.