168 matches found
elitecms 1.01 - SQL Injection / Cross-Site Scripting
eliteCMS 1.01 SQL/XSS Multiple Remote Vulns by xenohive greets to daganarus, dearest of all my friends. SQL injection requires magicquotes = off -/includes/functions.php --------------------------------- 89. function getpagesettings ... 92. $query = "SELECT FROM pages WHERE id = '$GET'page''"; 93...
elitecms 1.01 - SQL Injection Cross-Site Scripting
elitecms 1.01 - SQL Injection Cross-Site Scripting eliteCMS 1.01 SQL/XSS Multiple Remote Vulns by xenohive greets to daganarus, dearest of all my friends. SQL injection requires magicquotes = off -/includes/functions.php --------------------------------- 89. function getpagesettings ... 92. $quer...
CVE-2008-4046
SQL injection vulnerability in index.php in eliteCMS 1.0 allows remote attackers to execute arbitrary SQL commands via the page parameter...
Sql injection
SQL injection vulnerability in index.php in eliteCMS 1.0 allows remote attackers to execute arbitrary SQL commands via the page parameter...
CVE-2008-4046
SQL injection vulnerability in index.php in eliteCMS 1.0 allows remote attackers to execute arbitrary SQL commands via the page parameter...
CVE-2008-4046
CVE-2008-4046 describes an SQL injection in eliteCMS 1.0: vulnerable file is index.php, vulnerable via the page parameter, allowing remote execution of arbitrary SQL commands. The entry is referenced across multiple sources (NVD), with a CVSS v2 base score of 7.5 (HIGH) and network attack vector ...
eliteCMS 1.0 - page SQL Injection
eliteCMS 1.0 - page SQL Injection source: https://www.securityfocus.com/bid/30990/info eliteCMS is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. Attackers may exploit this issue to compromise the application, access or modify data, or exploit...
eliteCMS 1.0 - 'page' SQL Injection
source: https://www.securityfocus.com/bid/30990/info eliteCMS is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input. Attackers may exploit this issue to compromise the application, access or modify data, or exploit latent vulnerabilities in the...