Lucene search
PRIOn knowledge basePRION:CVE-2014-9445HistoryJan 02, 2015 - 8:59 p.m.
Sql injection
2015-01-0220:59:00
PRIOn knowledge base
www.prio-n.com
2
SQL injection vulnerability in incl/create.inc.php in Installatron GQ File Manager 0.2.5 allows remote attackers to execute arbitrary SQL commands via the create parameter to index.php. NOTE: this can be leveraged for cross-site scripting (XSS) attacks by creating a file that generates an error. NOTE: this issue was originally incorrectly mapped to CVE-2014-1137; see CVE-2014-1137 for more information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gatequest_file_manager | eq | 0.2.5 |
Related
cvelist
cvelist
cve
cve
nvd
nvd
prion
prion
Design/Logic Flaw
2015-01-10 00:59:00
Directory traversal
2015-01-08 20:59:00
Cross site scripting
2015-01-08 20:59:00
zdt
zdt
Codiad 2.4.3 Cross Site Scripting / Local File Inclusion Vulnerabilities
2014-12-20 00:00:00
GQ File Manager 0.2.5 Sql Injection / Cross Site Scripting Vulnerabilities
2014-12-20 00:00:00
exploitpack
exploitpack
GQ File Manager 0.2.5 - Multiple Vulnerabilities
2014-12-19 00:00:00
Codiad 2.4.3 - Multiple Vulnerabilities
2014-12-19 00:00:00
packetstorm
packetstorm
GQ File Manager 0.2.5 Cross Site Scripting / SQL Injection
2014-12-20 00:00:00
Codiad 2.4.3 Cross Site Scripting / Local File Inclusion
2014-12-20 00:00:00
exploitdb
exploitdb
GQ File Manager 0.2.5 - Multiple Vulnerabilities
2014-12-19 00:00:00
Codiad 2.4.3 - Multiple Vulnerabilities
2014-12-19 00:00:00