Lucene search
Mustafa Can Bjorn IPEKCIEDB-ID:27725HistoryApr 22, 2006 - 12:00 a.m.
MKPortal 1.1 - Multiple Input Validation Vulnerabilities
2006-04-2200:00:00
Mustafa Can Bjorn IPEKCI
www.exploit-db.com
12
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/17651/info
MKPortal is prone to multiple input-validation vulnerabilities. The issues include cross-site scripting and SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.
Successfully exploiting these vulnerabilities could allow an attacker to compromise the application, access or modify data, steal cookie-based authentication credentials, or even exploit vulnerabilities in the underlying database implementation. Other attacks are also possible.
MKPortal version 1.1 in conjunction with vBulletin 3.5.4 is vulnerable to these issues; other versions may also be affected.
http://www.example.com/index.php?ind=',userid='1Related
cve
cve
CVE-2006-2067
2006-04-27 13:34:00
prion
prion
Sql injection
2006-04-27 13:34:00
cvelist
cvelist
CVE-2006-2067
2006-04-27 10:00:00
nvd
nvd
CVE-2006-2067
2006-04-27 13:34:00