CVE-2005-3838

Published: Nov 26, 2005Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Multiple SQL injection vulnerabilities in search.php in IsolSoft Support Center 2.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) lorder, (2) Priority, (3) Status, (4) Category, (5) searchvalue, and (6) field parameter.

Affected (1)

Products: Isolsoft: Support Center

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Isolsoft Support Center	Version 2.2

References (12)

http://pridels0.blogspot.com/2005/11/isolsoft-support-center-sql-inj.html

Source: cve@mitre.org

http://secunia.com/advisories/17728

Source: cve@mitre.org

Vendor Advisory

http://securitytracker.com/id?1015270

Source: cve@mitre.org

Exploit

http://www.osvdb.org/21102

Source: cve@mitre.org

http://www.securityfocus.com/bid/15570

Source: cve@mitre.org

Exploit

http://www.vupen.com/english/advisories/2005/2592

Source: cve@mitre.org

http://pridels0.blogspot.com/2005/11/isolsoft-support-center-sql-inj.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/17728

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securitytracker.com/id?1015270

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.osvdb.org/21102

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/15570

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.vupen.com/english/advisories/2005/2592

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.