AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2005-4001: Multiple SQL injection vulnerabilities in phpYellowTM Pro Edition and Lite Edition 5.33 allow remote attackers to execut

infovulnerability

security

Source: NVD/CVE DatabaseDecember 5, 2005CVE-2005-4001

Summary

CVE-2005-4001 is a SQL injection vulnerability (a type of attack where an attacker inserts malicious database commands into user input fields) in phpYellow Pro Edition and Lite Edition version 5.33. The vulnerability allows remote attackers to execute arbitrary SQL commands through two different input parameters: the haystack parameter in search_result.php or the ckey parameter in print_me.php.

Vulnerability Details

CVSS Score

7.5

EPSS (30-day exploit probability)

EPSS: 0.6%

Classification

Attack SophisticationTrivial

Original source: https://nvd.nist.gov/vuln/detail/CVE-2005-4001

First tracked: February 15, 2026 at 08:36 PM

Classified by LLM (prompt v3) · confidence: 95%