Описание
** DISPUTED ** SQL injection vulnerability in install.php in mcRefer allows remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: this issue has been disputed by a third party, stating that the file does not use a SQL database.
** DISPUTED ** SQL injection vulnerability in install.php in mcRefer allows remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: this issue has been disputed by a third party, stating that the file does not use a SQL database.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-0875
- http://forums.avenir-geopolitique.net/viewtopic.php?t=2642
- http://osvdb.org/33675
- http://securityreason.com/securityalert/2235
- http://www.securityfocus.com/archive/1/459649/100/0/threaded
- http://www.securityfocus.com/archive/1/459796/100/200/threaded
- http://www.securityfocus.com/bid/22507
Связанные уязвимости
SQL injection vulnerability in install.php in mcRefer allows remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: this issue has been disputed by a third party, stating that the file does not use a SQL database