3 matches found
EV0074.txt
New eVuln Advisory: BirthSys SQL Injection Vulnerability http://evuln.com/vulns/74/summary.html --------------------Summary---------------- eVuln ID: EV0074 CVE: CVE-2006-0775 Software: BirthSys Sowtware's Web Site: http://clvfoto.free.fr/site/download.php3 Versions: 3.1 Critical Level: Moderate...
CVE-2006-0775
Multiple SQL injection vulnerabilities in show.php in BirthSys 3.1 allow remote attackers to execute arbitrary SQL commands via the $month variable. NOTE: a vector regarding the $date parameter and data.php date.php was originally reported, but this appears to be in error...
CVE-2006-0775
BirthSys 3.1 contains SQL Injection in show.php exploitable via the $month parameter. The vulnerability allows remote attackers to craft arbitrary SQL queries; there is mention of an additional vector for $date/data.php that is considered in error. Public sources report exploitation is available ...