CVE-2007-5104

SQL injection vulnerability in index.php in the Arcade module in bcoos 1.0.10 allows remote attackers to execute arbitrary SQL commands via the gid parameter in a playgame action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2007-5104

SQL injection vulnerability in index.php in the Arcade module in bcoos 1.0.10 allows remote attackers to execute arbitrary SQL commands via the gid parameter in a playgame action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2007-5104

The provided connected records describe SQL injection vulnerabilities in the bcoos package (versions 1.0.10 and earlier). For CVE-2007-5104, remote attackers can inject via the gid parameter to modules/arcade/index.php in a show_stats action. For CVE-2007-6266, similar issues allow injection via ...

bcoos 1.0.10 Arcade Module - index.php SQL Injection

bcoos 1.0.10 Arcade Module - index.php SQL Injection source: https://www.securityfocus.com/bid/25790/info The 'bcoos' Arcade module is prone to an SQL-injection vulnerability because it fails to adequately sanitize user-supplied input before using it in an SQL query. A successful exploit may allo...

bcoos 1.0.10 Arcade Module - 'index.php' SQL Injection

source: https://www.securityfocus.com/bid/25790/info The 'bcoos' Arcade module is prone to an SQL-injection vulnerability because it fails to adequately sanitize user-supplied input before using it in an SQL query. A successful exploit may allow an attacker to compromise the application, access o...