CVE-2007-6380 (e-Xoops) |
|
| BugsAlert Home > CVE-2007-6380 (e-Xoops) | |
|
Multiple SQL injection vulnerabilities in e-Xoops (exoops) 1.08, and 1.05 Rev 1 through 3, allow remote attackers to execute arbitrary SQL commands via the (1) lid parameter to (a) mylinks/ratelink.php, (b) adresses/ratefile.php, (c) mydownloads/ratefile.php, (d) mysections/ratefile.php, and (e) myalbum/ratephoto.php in modules/; the (2) bid parameter to (f) modules/banners/click.php; and the (3) gid parameter to (g) modules/arcade/index.php in a show_stats and play_game action, related issue... Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6380 Learn more about CVE-2007-6380 (e-Xoops) |
|
| Tags: cve-2007-6380 e-xoops | |
Related Items |
|
|
CVE-2007-6353 (exiv2)
|
|
|
Consented Blackmail
|
|
|
CVE-2008-0657 (JRE, JDK)
|
|
|
FrSIRT - phpDatingClub "page" Parameter Local File Inclusion Vulnerability
|
|
|
RedHat: Critical: firefox security update
|
|
|
Vuln: Gallery Prior to 2.2.6 Multiple Vulnerabilities
|
|
|
CVE-2008-4969 (ltp-network-test)
|
|
