Bugsalert.com
Security News about Viruses, Spyware,
Trojans, Malware, XSS attacks.
Home | Sitemap

CVE-2007-6078 (SkyPortal)
BugsAlert Home > CVE-2007-6078 (SkyPortal)
 
 

Multiple SQL injection vulnerabilities in SkyPortal RC6 allow remote attackers to execute arbitrary SQL commands via unspecified parameters to (1) nc_top.asp; (2) inc_bookmarks.asp, possibly involving a parameter passed from cp_main.asp; (3) inc_profile_functions.asp; or (4) inc_SUBSCRIPTIONS.asp; or the (5) Avatar_URL, (6) LINK1, or (7) LINK2 parameter to cp_main.asp in an EditIt action.




Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6078

Learn more about CVE-2007-6078 (SkyPortal)
 
Tags: cve-2007-6078 skyportal

Related Items
      CVE-2008-2745 (annotation_software)

      Vuln: Xunlei Web Thunder ThunderServer.webThunder.1 ActiveX Control Arbitrary File Download Vulnerability

      Gentoo Bacula MySQL Director Password Disclosure Weakness

      VU#445083:Apple QuickTime heap buffer overflow vulnerability

      Bugtraq: AmpJuke-0.7.0 (index.php) Xss VuLn.

      Debian Security Update Fixes Xulrunner Multiple Remote Vulnerabilities

      Vuln: QEMU Multiple Local Vulnerabilities

 
© 2007-2008 BugsAlert.com Original template by Arcsin Hosted By 1and1


Pixel