Описание
SQL injection vulnerability in post.php in XZero Community Classifieds 4.95.11 and earlier allows remote attackers to execute arbitrary SQL commands via the subcatid parameter to index.php.
SQL injection vulnerability in post.php in XZero Community Classifieds 4.95.11 and earlier allows remote attackers to execute arbitrary SQL commands via the subcatid parameter to index.php.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-6566
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39259
- https://www.exploit-db.com/exploits/4794
- http://en.rstzone.org/xzero-community-classifieds-v4-95-11-lfi-sql-in-t9394.rst
- http://osvdb.org/39740
- http://secunia.com/advisories/28250
- http://www.securityfocus.com/archive/1/485545/100/0/threaded
- http://www.securityfocus.com/bid/27042
Связанные уязвимости
nvd
около 18 лет назад
SQL injection vulnerability in post.php in XZero Community Classifieds 4.95.11 and earlier allows remote attackers to execute arbitrary SQL commands via the subcatid parameter to index.php.