2 matches found
phpIP Management 'CVE-2008-0538' Multiple SQL Injection Vulnerabilities
phpIP Management is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...
CVE-2008-0538
CVE-2008-0538 affects phpIP Management 4.3.2. The vulnerability is a set of SQL injection flaws exposed via (1) the password parameter to login.php and (2) the id parameter to display.php, among other vectors. The root cause is insufficient input sanitization/validation before constructing SQL qu...