Описание
Multiple SQL injection vulnerabilities in show.php in BirthSys 3.1 allow remote attackers to execute arbitrary SQL commands via the $month variable. NOTE: a vector regarding the $date parameter and data.php (date.php) was originally reported, but this appears to be in error.
Multiple SQL injection vulnerabilities in show.php in BirthSys 3.1 allow remote attackers to execute arbitrary SQL commands via the $month variable. NOTE: a vector regarding the $date parameter and data.php (date.php) was originally reported, but this appears to be in error.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-0775
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24617
- http://attrition.org/pipermail/vim/2006-February/000549.html
- http://secunia.com/advisories/18893
- http://securityreason.com/securityalert/467
- http://www.evuln.com/vulns/74/summary.html
- http://www.osvdb.org/23185
- http://www.securityfocus.com/bid/16684
- http://www.vupen.com/english/advisories/2006/0621
EPSS
CVE ID
Связанные уязвимости
Multiple SQL injection vulnerabilities in show.php in BirthSys 3.1 allow remote attackers to execute arbitrary SQL commands via the $month variable. NOTE: a vector regarding the $date parameter and data.php (date.php) was originally reported, but this appears to be in error.
EPSS