Unrated severityNVD Advisory· Published Dec 3, 2005· Updated Jun 16, 2026
CVE-2005-3978
CVE-2005-3978
Description
Multiple SQL injection vulnerabilities in NetClassifieds Premium Edition 1.0.1, Professional Edition 1.5.1, Standard Edition 1.9.6.3, and Free Edition 1.0.1 allow remote attackers to execute arbitrary SQL commands via the (1) CatID parameter in (a) ViewCat.php and (b) gallery.php, and the (2) ItemNum parameter in (c) ViewItem.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:scriptdevelopers.net:netclassifieds:1.0.1:*:free:*:*:*:*:*+ 3 more
- cpe:2.3:a:scriptdevelopers.net:netclassifieds:1.0.1:*:free:*:*:*:*:*
- cpe:2.3:a:scriptdevelopers.net:netclassifieds:1.0.1:*:premium:*:*:*:*:*
- cpe:2.3:a:scriptdevelopers.net:netclassifieds:1.5.1:*:professional:*:*:*:*:*
- cpe:2.3:a:scriptdevelopers.net:netclassifieds:1.9.6.3:*:standard:*:*:*:*:*
- Range: 1.0.1 (Premium, Free), 1.5.1 (Professional), 1.9.6.3 (Standard)
Patches
Vulnerability mechanics
References
7News mentions
0No linked articles in our index yet.