Lucene search
RedhatCVELIST:CVE-2012-2740HistoryOct 03, 2022 - 4:15 p.m.
CVE-2012-2740
2022-10-0316:15:37
redhat
www.cve.org
php
sql injection
vulnerability
remote attackers
SQL injection vulnerability in public_html/lists/admin in phpList before 2.10.18 allows remote attackers to execute arbitrary SQL commands via the sortby parameter in a find action.
References
securitytracker.com/id?1027181
www.exploit-db.com/exploits/18639
www.openwall.com/lists/oss-security/2012/06/16/1
www.openwall.com/lists/oss-security/2012/06/17/2
www.securityfocus.com/bid/52657
www.zeroscience.mk/en/vulnerabilities/ZSL-2012-5081.php
mantis.phplist.com/view.php?id=16557
www.phplist.com/?lid=567
Related
cve
cve
CVE-2012-2740
2022-10-03 16:15:37
prion
prion
Sql injection
2012-09-06 17:55:00
nvd
nvd
CVE-2012-2740
2012-09-06 17:55:01
openvas
openvas
FreeBSD Ports: phplist
2012-08-10 00:00:00
FreeBSD Ports: phplist
2012-08-10 00:00:00
nessus
nessus
zeroscience
zeroscience
phpList 2.10.17 Remote SQL Injection and XSS Vulnerability
2012-03-21 00:00:00
freebsd
freebsd
phpList -- SQL injection and XSS vulnerability
2012-03-21 00:00:00