2 matches found
Sql injection
Multiple SQL injection vulnerabilities in eNdonesia 8.4 allow remote attackers to execute arbitrary SQL commands via the 1 artid parameter to mod.php in a viewarticle action publisher mod and the 2 bid parameter to banners.php in a click action. NOTE: the mod.php viewdisk and viewlink vectors are...
CVE-2006-6873
CVE-2006-6873 describes multiple SQL injection vulnerabilities in mod.php of eNdonesia 8.4. The affected component is the mod.php file, with vulnerable vectors via (1) the did parameter in a viewdisk operation and (2) the cid parameter in viewlink (katalog mod) or viewcat (diskusi mod). The under...