Описание
Multiple SQL injection vulnerabilities in e107 0.615 allow remote attackers to inject arbitrary SQL code and gain sensitive information via (1) content parameter to content.php, (2) content_id parameter to content.php, or (3) list parameter to news.php.
Multiple SQL injection vulnerabilities in e107 0.615 allow remote attackers to inject arbitrary SQL code and gain sensitive information via (1) content parameter to content.php, (2) content_id parameter to content.php, or (3) list parameter to news.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2004-2042
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16283
- http://marc.info/?l=bugtraq&m=108588043007224&w=2
- http://marc.info/?l=full-disclosure&m=108586723116427&w=2
- http://secunia.com/advisories/11740
- http://www.osvdb.org/6531
- http://www.osvdb.org/6532
- http://www.osvdb.org/6533
- http://www.securityfocus.com/bid/10436
- http://www.waraxe.us/index.php?modname=sa&id=31
EPSS
CVE ID
Связанные уязвимости
Multiple SQL injection vulnerabilities in e107 0.615 allow remote attackers to inject arbitrary SQL code and gain sensitive information via (1) content parameter to content.php, (2) content_id parameter to content.php, or (3) list parameter to news.php.
EPSS