Описание
SQL injection vulnerability in view.php in XLAtunes 0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the album parameter in view mode. NOTE: some of these details are obtained from third party information.
SQL injection vulnerability in view.php in XLAtunes 0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the album parameter in view mode. NOTE: some of these details are obtained from third party information.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-1026
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32556
- https://www.exploit-db.com/exploits/3327
- http://osvdb.org/33743
- http://www.securityfocus.com/archive/1/460592/100/0/threaded
- http://www.securityfocus.com/archive/1/460621/100/0/threaded
- http://www.securityfocus.com/archive/1/460739/100/0/threaded
- http://www.securityfocus.com/bid/22602
- http://www.vupen.com/english/advisories/2007/0644
Связанные уязвимости
nvd
почти 19 лет назад
SQL injection vulnerability in view.php in XLAtunes 0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the album parameter in view mode. NOTE: some of these details are obtained from third party information.