Описание
Multiple SQL injection vulnerabilities in Jeremy Ashcraft Simplog 0.9.3 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) tid parameter in (a) preview.php; the (2) cid, (3) pid, and (4) eid parameters in (b) archive.php; and the (5) pid parameter in (c) comments.php.
Multiple SQL injection vulnerabilities in Jeremy Ashcraft Simplog 0.9.3 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) tid parameter in (a) preview.php; the (2) cid, (3) pid, and (4) eid parameters in (b) archive.php; and the (5) pid parameter in (c) comments.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-2029
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25982
- http://archives.neohapsis.com/archives/fulldisclosure/2006-04/0649.html
- http://secunia.com/advisories/19764
- http://securityreason.com/securityalert/799
- http://securitytracker.com/id?1015976
- http://www.nukedx.com/?getxpl=25
- http://www.osvdb.org/24877
- http://www.osvdb.org/24878
- http://www.osvdb.org/24879
- http://www.securityfocus.com/archive/1/431760/100/0/threaded
- http://www.simplog.org/archive.php?blogid=1&pid=57
- http://www.vupen.com/english/advisories/2006/1493
EPSS
CVE ID
Связанные уязвимости
Multiple SQL injection vulnerabilities in Jeremy Ashcraft Simplog 0.9.3 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) tid parameter in (a) preview.php; the (2) cid, (3) pid, and (4) eid parameters in (b) archive.php; and the (5) pid parameter in (c) comments.php.
EPSS