Bugsalert.com
Security News about Viruses, Spyware,
Trojans, Malware, XSS attacks.
Home | Recent | Sitemap

CVE-2008-0428 (BloofoxCMS)
BugsAlert Home > CVE-2008-0428 (BloofoxCMS)
 
 

Multiple SQL injection vulnerabilities in the login function in system/class_permissions.php in bloofoxCMS 0.3 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter to admin/index.php.




Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-0428

Learn more about CVE-2008-0428 (BloofoxCMS)
 
Tags: cve-2008-0428 bloofoxcms

Related Items
      Gentoo Security Update Fixes PeerCast Buffer Overflow Vulnerability

      MailMachinePRO "id" SQL Injection Vulnerability

      milliscripts (dir.php) Cross-Site Scripting Vulnerability

      WORM_AGENT.ADYN

      Microsoft Windows Media Products Two Vulnerabilities

      SFS EZ Pub Site "cat" SQL Injection Vulnerability

      Vuln: Samart-cms 'site.php' SQL Injection Vulnerability

 
© 2007-2009 BugsAlert.com Original template by Arcsin Hosted By 1and1


Pixel