2 matches found
Sql injection
Multiple SQL injection vulnerabilities in MyioSoft EasyBookMarker 4.0 allow remote attackers to execute arbitrary SQL commands via the 1 deletefolder and 2 deletelink parameters to unspecified vectors, possibly to a plugins/bookmarker/bookmarkerbackend.php or b ajaxp.php, different vectors than...
CVE-2008-5654
Summary (CVE-2008-5654): SQL injection vulnerability in the loginADP function of ajaxp.php in MyioSoft EasyCalendar 4.0 (and earlier per related CVE-2008-1344) allows remote attackers to execute arbitrary SQL commands via the rsargs parameter, reachable through the username parameter. This is a d...