Описание
SQL injection vulnerability in login.php in miniBloggie 1.0 and earlier, when gpc_magic_quotes is disabled, allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username and (2) password parameters.
SQL injection vulnerability in login.php in miniBloggie 1.0 and earlier, when gpc_magic_quotes is disabled, allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username and (2) password parameters.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-0417
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24280
- http://evuln.com/vulns/47/summary.html
- http://secunia.com/advisories/18604
- http://securitytracker.com/id?1015534
- http://www.osvdb.org/22729
- http://www.securityfocus.com/archive/1/423126/100/0/threaded
- http://www.securityfocus.com/bid/16367
- http://www.vupen.com/english/advisories/2006/0310
EPSS
Процентиль: 86%
0.03021
Низкий
CVE ID
Связанные уязвимости
nvd
около 20 лет назад
SQL injection vulnerability in login.php in miniBloggie 1.0 and earlier, when gpc_magic_quotes is disabled, allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username and (2) password parameters.
EPSS
Процентиль: 86%
0.03021
Низкий