Описание
Multiple SQL injection vulnerabilities in 4images 1.7.1 and earlier allow remote attackers to execute arbitrary SQL commands via the sessionid parameter in (1) top.php and (2) member.php. NOTE: this issue has also been reported to affect 1.7.2.
Multiple SQL injection vulnerabilities in 4images 1.7.1 and earlier allow remote attackers to execute arbitrary SQL commands via the sessionid parameter in (1) top.php and (2) member.php. NOTE: this issue has also been reported to affect 1.7.2.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-2214
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26184
- http://archives.neohapsis.com/archives/bugtraq/2006-05/0012.html
- http://secunia.com/advisories/19908
- http://www.osvdb.org/25153
- http://www.osvdb.org/25154
- http://www.securityfocus.com/bid/17748
- http://www.vupen.com/english/advisories/2006/1604
EPSS
Процентиль: 75%
0.00858
Низкий
CVE ID
Связанные уязвимости
nvd
почти 20 лет назад
Multiple SQL injection vulnerabilities in 4images 1.7.1 and earlier allow remote attackers to execute arbitrary SQL commands via the sessionid parameter in (1) top.php and (2) member.php. NOTE: this issue has also been reported to affect 1.7.2.
EPSS
Процентиль: 75%
0.00858
Низкий