EUVD-2006-5704

Malware in sbrugna...

EUVD-2006-5591

Malware in sbrugna...

CVE-2006-5719

SQL injection vulnerability in libs/sessions.lib.php in BytesFall Explorer bfExplorer 0.0.6 allows remote attackers to execute arbitrary SQL commands via unspecified parameters, a different issue than CVE-2006-5606...

CVE-2006-5719

CVE-2006-5719 concerns a SQL injection vulnerability in BytesFall Explorer (bfExplorer) 0.0.6. The affected component is libs/sessions.lib.php, where an attacker can cause arbitrary SQL commands to be executed via unspecified parameters. The vulnerability is described as a separate issue from CVE...

CVE-2006-5719

SQL injection vulnerability in libs/sessions.lib.php in BytesFall Explorer bfExplorer 0.0.6 allows remote attackers to execute arbitrary SQL commands via unspecified parameters, a different issue than CVE-2006-5606...

BytesFall-exp.txt

Advisory: Authentication bypass in BytesFall Explorer A malicious user can bypass authentication and take over the role of the administrator of BytesFall Explorer by using an SQL injection. Several other SQL injections are possible. Details ======= Product: BytesFall Explorer Affected Versions: =...

CVE-2006-5606

Multiple SQL injection vulnerabilities in BytesFall Explorer bfExplorer 0.0.7.1 and earlier allow remote attackers to execute arbitrary SQL commands via the username $User variable to login/doLogin.php and other unspecified vectors...

CVE-2006-5606

CVE-2006-5606 concerns BytesFall Explorer (bfExplorer) up to version 0.0.7.1. The vulnerability is a SQL injection that allows remote attackers to execute arbitrary SQL commands via the username parameter (User variable) used in login/doLogin.php and other unspecified vectors. The NVD entry assig...

CVE-2006-5606

Multiple SQL injection vulnerabilities in BytesFall Explorer bfExplorer 0.0.7.1 and earlier allow remote attackers to execute arbitrary SQL commands via the username $User variable to login/doLogin.php and other unspecified vectors...