6 matches found
CVE-2007-4552
SQL injection vulnerability in index.php in Agares Media Arcadem 2.01 allows remote attackers to execute arbitrary SQL commands via the blockpage parameter. NOTE: as of 20070827, the vendor has made conflicting statements regarding whether this issue exists or not...
Arcadem 2.01 Remote SQL Injection / RFI Vulnerabilties
No description provided by source. Arcadem Remote File Inclusion Flaw / SQL Injection Software: Arcadem 2.01 Vendor link: http://agaresmedia.com Attack: Remote File Inclusion / SQL Injection Original advisory: http://14house.blogspot.com/2007/08/arcadem-rfi-sql-injection-flaws.html Discovered by:...
CVE-2007-4551
CVE-2007-4551 is a PHP remote file inclusion vulnerability affecting Agares Media Arcadem 2.01. The issue occurs in index.php where the loadpage parameter can be used to include arbitrary PHP code, enabling remote code execution. The provided documents do not specify a fixed vulnerable version be...
CVE-2007-4552
CVE-2007-4552 affects Agares Media Arcadem 2.01. The vulnerability is an SQL injection in index.php exploitable via the blockpage parameter, enabling remote execution of arbitrary SQL. CVSS v2.0: 7.5 (HIGH), vector AV:N/AC:L/Au:N/C:P/I:P/A:P; network attack, no authentication, low complexity, par...
Arcadem 2.01 Remote SQL Injection / RFI Vulnerabilties
Exploit for unknown platform in category web applications ====================================================== Arcadem 2.01 Remote SQL Injection / RFI Vulnerabilties ====================================================== Arcadem Remote File Inclusion Flaw / SQL Injection Software: Arcadem 2.01...
Arcadem 2.01 - SQL Injection / Remote File Inclusion
Arcadem Remote File Inclusion Flaw / SQL Injection Software: Arcadem 2.01 Vendor link: http://agaresmedia.com Attack: Remote File Inclusion / SQL Injection Original advisory: http://14house.blogspot.com/2007/08/arcadem-rfi-sql-injection-flaws.html Discovered by: David Sopas Ferreira a.k.a SmOk3...