2 matches found
CVE-2007-6266
Multiple SQL injection vulnerabilities in bcoos 1.0.10 and earlier allow remote attackers to execute arbitrary SQL commands via 1 the gid parameter to modules/arcade/index.php in a showstats action, or the lid parameter to 2 modules/myalbum/ratephoto.php or 3 modules/mylinks/ratelink.php, differe...
CVE-2007-6266
CVE-2007-6266 applies to the bcoos CMS (versions 1.0.10 and earlier). The affected components expose multiple SQL injection weaknesses that allow remote attackers to run arbitrary SQL commands. Attack vectors include: (1) gid parameter to modules/arcade/index.php in a show_stats action, (2) lid p...