Sql injection

2006-02-2302:06:00

PRIOn knowledge base

www.prio-n.com

8.8 High

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

79.5%

JSON

SQL injection vulnerability in include/includes/user/login.php in ilchClan before 1.05g allows remote attackers to execute arbitrary SQL commands via the login_name parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CPENameOperatorVersion
ilchclaneq1.0.2
ilchclaneq1.0.1
ilchclaneq1.0.0
ilchclaneq1.0.4
ilchclaneq1.0.3
ilchclaneq0.0.1

Name	Operator	Version
ilchclan	eq	1.0.2
ilchclan	eq	1.0.1
ilchclan	eq	1.0.0
ilchclan	eq	1.0.4
ilchclan	eq	1.0.3
ilchclan	eq	0.0.1

References

secunia.com/advisories/18951

www.ilch.de/news-134.html

www.osvdb.org/23370

www.vupen.com/english/advisories/2006/0676

exchange.xforce.ibmcloud.com/vulnerabilities/24830