CVE-2008-3887 (dotProject) |
|
| BugsAlert Home > CVE-2008-3887 (dotProject) | |
|
Multiple SQL injection vulnerabilities in index.php in dotProject 2.1.2 allow (1) remote authenticated users to execute arbitrary SQL commands via the tab parameter in a projects action, and (2) remote authenticated administrators to execute arbitrary SQL commands via the user_id parameter in a viewuser action. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3887 Learn more about CVE-2008-3887 (dotProject) |
|
| Tags: cve-2008-3887 dotproject | |
Related Items |
|
|
Brief: Federal agencies boost scores in security
|
|
|
CVE-2008-5005 (alpine, imap_toolkit)
|
|
|
FrSIRT - cbrPager Archive Handling Arbitrary Command Injection Issue
|
|
|
Bugtraq: phpAddressBook v2.11 Multiple Local File Inclusion Vulnerabilities
|
|
|
Viral Marketing Script "id" SQL Injection Vulnerability
|
|
|
CVE-2008-5024 (firefox, seamonkey, thunderbird)
|
|
|
FrSIRT - phpMyAdmin "sort_by" Parameter PHP Code Injection Vulnerability
|
|
