2 matches found
Sql injection
SQL injection vulnerability in folder/list in Hulihan BXR 0.6.8 allows remote attackers to execute arbitrary SQL commands via the orderby parameter...
Hulihan Applications BXR 0.6.8 - SQL Injection HTML Injection
Hulihan Applications BXR 0.6.8 - SQL Injection HTML Injection source: https://www.securityfocus.com/bid/42247/info Hulihan Applications BXR is prone to an SQL-injection vulnerability and multiple HTML-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input. An...