3 matches found
CVE-2005-3676
SQL injection vulnerability in download.php in PhpWebThings 1.4.4 allows remote attackers to execute arbitrary SQL commands via the file parameter...
CVE-2005-3676
SQL injection vulnerability in download.php in PhpWebThings 1.4.4 allows remote attackers to execute arbitrary SQL commands via the file parameter...
CVE-2005-3676
The CVE-2005-3676 entry affects PhpWebThings 1.4.4, where a vulnerability in download.php allows SQL injection via the file parameter. This enables remote attackers to execute arbitrary SQL commands, with not-fully-specified impact details beyond the NVD summary. The connected documents confirm t...