Описание
SQL injection vulnerability in PCPIN Chat 5.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the username field (login parameter) to main.php.
SQL injection vulnerability in PCPIN Chat 5.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the username field (login parameter) to main.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-1962
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25961
- http://retrogod.altervista.org/pcpin_504_xpl.html
- http://secunia.com/advisories/19708
- http://securitytracker.com/id?1015968
- http://www.securityfocus.com/archive/1/431390/100/0/threaded
- http://www.securityfocus.com/archive/1/436029/100/0/threaded
- http://www.securityfocus.com/bid/17632
- http://www.vupen.com/english/advisories/2006/1441
Связанные уязвимости
nvd
почти 20 лет назад
SQL injection vulnerability in PCPIN Chat 5.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via the username field (login parameter) to main.php.