3 matches found
CVE-2006-2749
SQL injection vulnerability in search.php in Open Searchable Image Catalogue OSIC 0.7.0.1 and earlier allows remote attackers to inject arbitrary SQL commands via the 1 txtCustomField and 2 CustomFieldID array parameters...
CVE-2006-2749
CVE-2006-2749 is a SQL injection vulnerability in the Open Searchable Image Catalogue (OSIC) before or equal to 0.7.0.1, specifically in search.php. The underlying flaw allows remote attackers to inject arbitrary SQL via the (1) txtCustomField and (2) CustomFieldID array parameters. Affected prod...
CVE-2006-2749
SQL injection vulnerability in search.php in Open Searchable Image Catalogue OSIC 0.7.0.1 and earlier allows remote attackers to inject arbitrary SQL commands via the 1 txtCustomField and 2 CustomFieldID array parameters...