Описание
Multiple SQL injection vulnerabilities in index.php in ACG News 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the aid parameter in a showarticle action or (2) the catid parameter in a showcat action.
Multiple SQL injection vulnerabilities in index.php in ACG News 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the aid parameter in a showarticle action or (2) the catid parameter in a showcat action.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-4603
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36293
- https://www.exploit-db.com/exploits/4330
- http://14house.blogspot.com/2007/08/acg-news-sql-injection.html
- http://secunia.com/advisories/26637
- http://www.osvdb.org/36690
- http://www.osvdb.org/36691
- http://www.securityfocus.com/bid/25466
Связанные уязвимости
nvd
больше 18 лет назад
Multiple SQL injection vulnerabilities in index.php in ACG News 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the aid parameter in a showarticle action or (2) the catid parameter in a showcat action.