Описание
Multiple SQL injection vulnerabilities in xlaabsolutenm.aspx in Absolute News Manager.NET 5.1 allow remote attackers to execute arbitrary SQL commands via the (1) z, (2) pz, (3) ord, and (4) sort parameters.
Multiple SQL injection vulnerabilities in xlaabsolutenm.aspx in Absolute News Manager.NET 5.1 allow remote attackers to execute arbitrary SQL commands via the (1) z, (2) pz, (3) ord, and (4) sort parameters.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-6269
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38871
- http://marc.info/?l=bugtraq&m=119678724111351&w=2
- http://osvdb.org/40576
- http://secunia.com/advisories/27923
- http://www.procheckup.com/Vulnerability_PR07-39.php
- http://www.securityfocus.com/bid/26692
- http://www.xigla.com/news/default.aspx
- http://www.xigla.com/security/ANMNET51-SecurityUpdate20071128.zip
Связанные уязвимости
nvd
около 18 лет назад
Multiple SQL injection vulnerabilities in xlaabsolutenm.aspx in Absolute News Manager.NET 5.1 allow remote attackers to execute arbitrary SQL commands via the (1) z, (2) pz, (3) ord, and (4) sort parameters.