4 matches found
EUVD-2007-4100
Malware in sbrugna...
Sql injection
SQL injection vulnerability in philboardforum.asp in Metyus Forum Portal 1.0 allows remote attackers to execute arbitrary SQL commands via the forumid parameter. NOTE: this might be related to CVE-2007-0920 or CVE-2007-3884...
CVE-2007-3884
CVE-2007-3884 refers to a SQL injection vulnerability in philboard_forum.asp used by husrevforum. The affected versions listed are husrevforum 1.0.1 and, later, 2.0.1, with the flaw allowing remote attackers to craft input to the forumid parameter and execute arbitrary SQL commands on the backend...
CVE-2007-3884
SQL injection vulnerability in philboardforum.asp in husrevforum 1.0.1 allows remote attackers to execute arbitrary SQL commands via the forumid parameter. NOTE: it was later reported that 2.0.1 is also affected...