CVE-2008-0371 (aliTalk) |
|
| BugsAlert Home > CVE-2008-0371 (aliTalk) | |
|
Multiple SQL injection vulnerabilities in aliTalk 1.9.1.1, when magic_quotes_gpc is disabled, allow remote authenticated users to execute arbitrary SQL commands via (1) the mohit parameter to (a) inc/receivertwo.php; and allow remote attackers to execute arbitrary SQL commands via (2) the id parameter to (b) inc/usercp.php, related to functionz/usercp.php; or (3) the username parameter to (c) admin/index.php, related to functionz/first_process.php, or (d) index.php. NOTE: some of these detai... Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-0371 Learn more about CVE-2008-0371 (aliTalk) |
|
| Tags: cve-2008-0371 alitalk | |
Related Items |
|
|
SFS Ez Forum "forum" SQL Injection Vulnerability
|
|
|
CVE-2008-2320 (carboncore)
|
|
|
Fedora Security Update Fixes Link Grammar Buffer Overflow Vulnerability
|
|
|
Slackware: seamonkey
|
|
|
CVE-2008-0105 (Office, Works, Works Suite)
|
|
|
openSUSE libxcrypt MD5 Password Hash Configuration Weakness
|
|
|
CVE-2008-1547 (exchange_server)
|
|
