Unrated severityNVD Advisory· Published Dec 1, 2005· Updated Jun 16, 2026
CVE-2005-3956
CVE-2005-3956
Description
Multiple SQL injection vulnerabilities in index.php in DMANews 0.904 and 0.910 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter in a comments action and the (2) sortorder and (3) display_num parameters in a news_list action.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
4- secunia.com/advisories/17759nvdExploitVendor Advisory
- www.securityfocus.com/bid/15628nvdExploit
- pridels0.blogspot.com/2005/11/dmanews-multiple-sql-inj-vuln.htmlnvd
- www.osvdb.org/21165nvd
News mentions
0No linked articles in our index yet.