Описание
SQL injection vulnerability in index.php in Uiga Fan Club, as downloaded on 20100310, allows remote attackers to execute arbitrary SQL commands via the id parameter in a photos action.
SQL injection vulnerability in index.php in Uiga Fan Club, as downloaded on 20100310, allows remote attackers to execute arbitrary SQL commands via the id parameter in a photos action.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2010-1365
- http://4004securityproject.wordpress.com/2010/02/28/uigafanclub-index-php-sql-injection
- http://packetstormsecurity.org/1002-exploits/uigafc-sql.txt
- http://secunia.com/advisories/38756
- http://www.exploit-db.com/exploits/11600
- http://www.vupen.com/english/advisories/2010/0487
Связанные уязвимости
nvd
почти 16 лет назад
SQL injection vulnerability in index.php in Uiga Fan Club, as downloaded on 20100310, allows remote attackers to execute arbitrary SQL commands via the id parameter in a photos action.