Unrated severityNVD Advisory· Published Dec 5, 2005· Updated Apr 16, 2026
CVE-2005-4005
CVE-2005-4005
Description
SQL injection vulnerability in messages.php in PHP-Fusion 6.00.109 allows remote attackers to obtain path information and possibly execute arbitrary SQL commands via the srch_text parameter in a Search and Sort option to messages.php.
Affected products
1- cpe:2.3:a:php_fusion:php_fusion:6.00.109:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6News mentions
0No linked articles in our index yet.