Описание
SQL injection vulnerability in index.php in DeeEmm.com DM CMS 0.7.0.Beta allows remote attackers to execute arbitrary SQL commands via the id parameter in the media page (build_media_content.php). NOTE: it was later reported that 0.7.4 is also affected.
SQL injection vulnerability in index.php in DeeEmm.com DM CMS 0.7.0.Beta allows remote attackers to execute arbitrary SQL commands via the id parameter in the media page (build_media_content.php). NOTE: it was later reported that 0.7.4 is also affected.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-5679
- https://exchange.xforce.ibmcloud.com/vulnerabilities/37337
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44506
- https://www.exploit-db.com/exploits/6250
- http://archives.neohapsis.com/archives/bugtraq/2007-10/0315.html
- http://www.securityfocus.com/bid/26169/info
- http://www.vupen.com/english/advisories/2008/2411
Связанные уязвимости
SQL injection vulnerability in index.php in DeeEmm.com DM CMS 0.7.0.Beta allows remote attackers to execute arbitrary SQL commands via the id parameter in the media page (build_media_content.php). NOTE: it was later reported that 0.7.4 is also affected.