Описание
SQL injection vulnerability in PKR Internet Taskjitsu before 2.0.6 allows remote attackers to execute arbitrary SQL commands via the key parameter, when the limit query parameter is set to customerid.
SQL injection vulnerability in PKR Internet Taskjitsu before 2.0.6 allows remote attackers to execute arbitrary SQL commands via the key parameter, when the limit query parameter is set to customerid.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-5184
- https://www.pkrinternet.com/download/RELEASE-NOTES.txt
- https://www.pkrinternet.com/taskjitsu/task/3517
- http://secunia.com/advisories/22257
- http://securitytracker.com/id?1016978
- http://www.securityfocus.com/bid/20332
- http://www.vupen.com/english/advisories/2006/3903
EPSS
Процентиль: 74%
0.00816
Низкий
CVE ID
Связанные уязвимости
nvd
больше 19 лет назад
SQL injection vulnerability in PKR Internet Taskjitsu before 2.0.6 allows remote attackers to execute arbitrary SQL commands via the key parameter, when the limit query parameter is set to customerid.
EPSS
Процентиль: 74%
0.00816
Низкий