Multiple Sql Injection Vulnerabilities In Web4f vulnerability report
vulnerabilities.aspcode.net
Phase:
Multiple SQL injection vulnerabilities in Web4Future News Portal allow remote attackers to execute arbitrary SQL commands via the ID parameter to (1) comentarii.php or (2) view.php.
References
OSVDB:25285 | URL:http://www.osvdb.org/25285 | OSVDB:25286 | URL:http://www.osvdb.org/25286 | SECTRACK:1016027 | URL:http://securitytracker.com/id?1016027 | SECUNIA:17880 | URL:http://secunia.com/advisories/17880 | XF:newsp
Votes:
Assigned (Monday, May 08, 2006)
Comments:
None (candidate not yet proposed)
F7:
Tagged as
vulnerabilities
Web4Future
arbitrary
attackers
parameter
injection
Multiple
commands
execute
Portal
remote
allow
News
SQL
via