2 matches found
CVE-2008-2919
SQL injection vulnerability in listing.php in Gryphon gllcTS2 4.2.4 allows remote attackers to execute arbitrary SQL commands via the sort parameter...
CVE-2008-2919
CVE-2008-2919 describes an SQL injection in Gryphon gllcTS2 4.2.4, exploiting the sort parameter in listing.php. Root cause: unsafely handled user input leads to arbitrary SQL execution. Affects the listing.php path; impact is partial confidentiality, integrity, and availability. Public reference...