Описание
SQL injection vulnerability in index.php in CatBot 0.4.2 allows remote attackers to execute arbitrary SQL commands via the lastcatbot parameter.
SQL injection vulnerability in index.php in CatBot 0.4.2 allows remote attackers to execute arbitrary SQL commands via the lastcatbot parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2015-1367
- https://exchange.xforce.ibmcloud.com/vulnerabilities/100043
- http://packetstormsecurity.com/files/129990/CatBot-0.4.2-SQL-Injection.html
- http://seclists.org/fulldisclosure/2015/Jan/63
- http://www.securityfocus.com/archive/1/534490/100/0/threaded
- http://www.vulnerability-lab.com/get_content.php?id=1408
Связанные уязвимости
nvd
около 11 лет назад
SQL injection vulnerability in index.php in CatBot 0.4.2 allows remote attackers to execute arbitrary SQL commands via the lastcatbot parameter.