4 matches found
EUVD-2008-4144
Malware in sbrugna...
CVE-2008-4161
SQL injection vulnerability in searchinv.php in Assetman 2.5b allows remote attackers to execute arbitrary SQL commands and conduct session fixation attacks via a combination of crafted order and orderby parameters in a searchall action...
Sql injection
SQL injection vulnerability in searchinv.php in Assetman 2.5b allows remote attackers to execute arbitrary SQL commands and conduct session fixation attacks via a combination of crafted order and orderby parameters in a searchall action...
CVE-2008-4161
CVE-2008-4161 affects Assetman 2.5b, where a vulnerability in search_inv.php allows SQL injection via crafted order and order_by parameters in a search_all action. This can enable remote attackers to execute arbitrary SQL commands and may enable session fixation. The primary sources describe the ...