Multiple Sql Injection Vulnerabilities In Keyst vulnerability report
vulnerabilities.aspcode.net
Phase:
Multiple SQL injection vulnerabilities in Keystone Digital Library Suite (DLS) 1.5.4 and earlier allow remote attackers to execute arbitrary SQL commands via the subject_type_id parameter in (1) the index page and (2) the search module.
References
MISC:http://pridels0.blogspot.com/2006/03/keystone-dls-sql-vuln.html | XF:keystonedls-subjecttypeid-sql-injection(25571) | URL:http://xforce.iss.net/xforce/xfdb/25571
Votes:
Assigned (Sunday, April 02, 2006)
Comments:
None (candidate not yet proposed)
F7:
Tagged as
vulnerabilities
injection
Keystone
Multiple
Library
Digital
Suite
SQL