3 matches found
[eVuln] GuestBookHost Authentication Bypass
New eVuln Advisory: GuestBookHost Authentication Bypass http://evuln.com/vulns/56/summary.html --------------------Summary---------------- eVuln ID: EV0056 CVE: CVE-2006-0542 Software: GuestBookHost Sowtware's Web Site: http://nukedweb.memebot.com/ Versions: 2005.04.25 Critical Level: Moderate...
EV0056.txt
New eVuln Advisory: GuestBookHost Authentication Bypass http://evuln.com/vulns/56/summary.html --------------------Summary---------------- eVuln ID: EV0056 CVE: CVE-2006-0542 Software: GuestBookHost Sowtware's Web Site: http://nukedweb.memebot.com/ Versions: 2005.04.25 Critical Level: Moderate...
CVE-2006-0542
CVE-2006-0542 describes multiple SQL injection vulnerabilities in the NukedWeb GuestBookHost 2005.04.25, specifically in config.php where the email and password parameters are not properly sanitized. This allows remote attackers to execute arbitrary SQL commands via those parameters, potentially ...