11 matches found
EUVD-2008-7169
Malware in sbrugna...
CVE-2008-7210
directory.php in AJchat 0.10 allows remote attackers to bypass input validation and conduct SQL injection attacks via a numeric parameter with a value matching the s parameter's hash value, which prevents the associated $GET"s" variable from being unset. NOTE: it could be argued that this...
Sql injection
directory.php in AJchat 0.10 allows remote attackers to bypass input validation and conduct SQL injection attacks via a numeric parameter with a value matching the s parameter's hash value, which prevents the associated $GET"s" variable from being unset. NOTE: it could be argued that this...
CVE-2008-7210
directory.php in AJchat 0.10 allows remote attackers to bypass input validation and conduct SQL injection attacks via a numeric parameter with a value matching the s parameter's hash value, which prevents the associated $GET"s" variable from being unset. NOTE: it could be argued that this...
CVE-2008-7210
CVE-2008-7210 affects AJchat 0.10. In directory.php, remote attackers can bypass input validation and perform SQL injection via a numeric parameter whose value matches the s parameter hash, which prevents $_GET["s"] from being unset. A note in the entry contends the issue may stem from a PHP unse...
Ajchat 'directory.php' SQL注入漏洞
Ajchat是一款基于PHP的WEB应用程序。 Ajchat不正确过滤用户提交的输入,远程攻击者可以利用漏洞进行SQL注入攻击,获得敏感信息或操作数据库。 问题是'directory.php'脚本对用户提交的WEB参数缺少过滤,提交恶意SQL查询作为参数数据,可更改原来的SQL逻辑,获得敏感信息或操作数据库。 Ajchat 0.10 目前没有解决方案提供: http://ajchat.sourceforge.net/ http://www.example.com/directory.php?s='and 1 = 2 union select...
AJchat 0.10 unset() bug Remote SQL Injection Vulnerability
No description provided by source. ---- AJchat Remote Sql Injection using unset bug ... ITDefence.ru Antichat.ru AJchat Remote Sql Injection using unset bug Eugene Minaev [email protected] / \ \ \ / .\ / /// // / \ / \ // / / / /// /\ / / / / // / / / / /...
AJchat 0.10 - 'unse' SQL Injection
---- AJchat Remote Sql Injection using unset bug ... ITDefence.ru Antichat.ru AJchat Remote Sql Injection using unset bug Eugene Minaev [email protected] / \ \ \ / .\ / /// // / \ / \ // / / / /// /\ / / / / // / / / / / /\ / / / / / / / / / / / //\ \ / / / / // / // / /\ / // 2007...
ajchat-sql.txt
---- AJchat Remote Sql Injection using unset bug ... ITDefence.ru Antichat.ru AJchat Remote Sql Injection using unset bug Eugene Minaev [email protected] / \ \ \ / .\ / /// // / \ / \ // / / / /// /\ / / / / // / / / / / /\ / / / / / / / / / / / //\ \ / / / / // / // / /\ / // 2007...
AJchat 0.10 - unse SQL Injection
AJchat 0.10 - unse SQL Injection ---- AJchat Remote Sql Injection using unset bug ... ITDefence.ru Antichat.ru AJchat Remote Sql Injection using unset bug Eugene Minaev [email protected] / \ \ \ / .\ / /// // / \ / \ // / / / /// /\ / / / / // / / / / / /\ / / / / / / / / / / / //\ \ / / /...
AJchat 0.10 unset() bug Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ========================================================== AJchat 0.10 unset bug Remote SQL Injection Vulnerability ========================================================== ---- AJchat Remote Sql Injection using unset bug ... ITDefence.r...