Описание
SQL injection vulnerability in scrape.php in BtiTracker 1.4.7 and earlier and xBtiTracker 2.0.542 and earlier allows remote attackers to execute arbitrary SQL commands via the info_hash parameter.
SQL injection vulnerability in scrape.php in BtiTracker 1.4.7 and earlier and xBtiTracker 2.0.542 and earlier allows remote attackers to execute arbitrary SQL commands via the info_hash parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2008-3784
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44627
- https://www.exploit-db.com/exploits/6296
- http://secunia.com/advisories/31556
- http://securityreason.com/securityalert/4186
- http://www.btiteam.org
- http://www.btiteam.org/smf/index.php?topic=12068
- http://www.securityfocus.com/bid/30811
Связанные уязвимости
nvd
больше 17 лет назад
SQL injection vulnerability in scrape.php in BtiTracker 1.4.7 and earlier and xBtiTracker 2.0.542 and earlier allows remote attackers to execute arbitrary SQL commands via the info_hash parameter.