Описание
Multiple SQL injection vulnerabilities in download.php in Olate Download (od) 3.4.2 allow remote attackers to execute arbitrary SQL commands via the (1) HTTP_REFERER or (2) HTTP_USER_AGENT HTTP header.
Multiple SQL injection vulnerabilities in download.php in Olate Download (od) 3.4.2 allow remote attackers to execute arbitrary SQL commands via the (1) HTTP_REFERER or (2) HTTP_USER_AGENT HTTP header.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-4540
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36214
- http://myimei.com/security/2007-08-22/olate-download-342downloadphp-sql-injection.html
- http://osvdb.org/38581
- http://securityreason.com/securityalert/3062
- http://www.securityfocus.com/archive/1/477340/100/0/threaded
- http://www.securityfocus.com/bid/25410
Связанные уязвимости
nvd
больше 18 лет назад
Multiple SQL injection vulnerabilities in download.php in Olate Download (od) 3.4.2 allow remote attackers to execute arbitrary SQL commands via the (1) HTTP_REFERER or (2) HTTP_USER_AGENT HTTP header.