Описание
SQL injection vulnerability in auktion.php in phpscripte24 Niedrig Gebote Pro Auktions System II allows remote attackers to execute arbitrary SQL commands via the id_auk parameter.
SQL injection vulnerability in auktion.php in phpscripte24 Niedrig Gebote Pro Auktions System II allows remote attackers to execute arbitrary SQL commands via the id_auk parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2010-1269
- https://exchange.xforce.ibmcloud.com/vulnerabilities/57020
- http://4004securityproject.wordpress.com/2010/03/18/phpscripte24-niedrig-gebote-pro-auktions-system-ii-blind-sql-injection-auktion-php
- http://packetstormsecurity.org/1003-exploits/phpscripte24-sql.txt
- http://secunia.com/advisories/38971
- http://www.exploit-db.com/exploits/11805
Связанные уязвимости
nvd
почти 16 лет назад
SQL injection vulnerability in auktion.php in phpscripte24 Niedrig Gebote Pro Auktions System II allows remote attackers to execute arbitrary SQL commands via the id_auk parameter.