4 matches found
EUVD-2005-3159
Malware in sbrugna...
Sql injection
SQL injection vulnerability in messages.php in PHP-Fusion 6.01.15 and 7.00.1, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the subject and msgsend parameters, a different vector than CVE-2005-3157, CVE-2005-3158, CVE-2005-3159, CVE-2005-4005, and...
PHP-Fusion < 6.00.110 Multiple SQLi Vulnerabilities
PHP-Fusion is prone to multiple SQL injection SQLi vulnerabilities due to its failure to properly sanitize certain parameters. SPDX-FileCopyrightText: 2005 Josh Zlatin-Amishav Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
CVE-2005-3158
PHP-Fusion