Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published Sep 15, 2012· Updated Apr 29, 2026

CVE-2011-5168

CVE-2011-5168

Description

SQL injection vulnerability in user.php in Banana Dance before B.1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Affected products

1

Bananadance/Banana Dance
cpe:2.3:a:bananadance:banana_dance:*:beta:*:*:*:*:*:*
Range: <=0.9

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

www.exploit-db.com/exploits/17919nvdExploit
www.bananadance.org/Program-News/Minor-Update-and-New-ThemenvdVendor Advisory
www.doyoubananadance.com/Program-News/Important-Notice-About-SQLi-ExploitnvdURL Repurposed
www.osvdb.org/83882nvd
www.securityfocus.com/bid/49903nvd

News mentions

0

No linked articles in our index yet.