7 matches found
EUVD-2008-5721
Malware in sbrugna...
AlstraSoft Web Email Script Enterprise SQL Injection
--AlstraSoft Web Email Script Enterprise id Remote SQL Injection Vuln. YazarAuth0r: Bgh7 Site: Http://ozelteam.com Turk Bılısım Guclerı PsT: ByBgh7 at msn d0t c0m --Script: http://www.alstrasoft.com/disposable-email-script.htm --Dork: AlstraSoft Web "ESE" --Dork2: AlstraSoft Web Email Script...
CVE-2008-5751
CVE-2008-5751 is a SQL injection vulnerability in index.php of AlstraSoft Web Email Script Enterprise (ESE). The issue arises from unsafely handling the id parameter in a directory action, allowing remote attackers to inject SQL and execute arbitrary commands against the backend database. This en...
CVE-2008-5751
SQL injection vulnerability in index.php in AlstraSoft Web Email Script Enterprise ESE allows remote attackers to execute arbitrary SQL commands via the id parameter in a directory action...
AlstraSoft Web Email Script Enterprise 'id'参数SQL注入漏洞
BUGTRAQ ID: 33033 CNCAN ID:CNCAN-2008123001 AlstraSoft Web Email Script Enterprise是一款基于PHP的WEB应用程序。 AlstraSoft Web Email Script Enterprise不正确处理用户参数,远程攻击者可以利用漏洞进行SQL注入攻击,获得敏感信息或操作数据库。 问题是脚本对'id'参数缺少过滤,构建恶意的SQL查询作为参数数据,可导致更改原来的SQL逻辑,获得敏感信息或操作数据库。 AlstraSoft Web Email Script Enterprise 厂商解决方案...
Alstrasoft Web Email Script Enterprise - id SQL Injection
Alstrasoft Web Email Script Enterprise - id SQL Injection --AlstraSoft Web Email Script Enterprise id Remote SQL Injection Vuln. YazarAuth0r: Bgh7 Site: Http://ozelteam.com Turk Bılısım Guclerı PsT: ByBgh7 at msn d0t c0m --Script: http://www.alstrasoft.com/disposable-email-script.htm --Dork:...
Alstrasoft Web Email Script Enterprise - 'id' SQL Injection
--AlstraSoft Web Email Script Enterprise id Remote SQL Injection Vuln. YazarAuth0r: Bgh7 Site: Http://ozelteam.com Turk Bılısım Guclerı PsT: ByBgh7 at msn d0t c0m --Script: http://www.alstrasoft.com/disposable-email-script.htm --Dork: AlstraSoft Web "ESE" --Dork2: AlstraSoft Web Email Script...