5 matches found
Debian: Security Advisory (DSA-2046-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
PHPGroupWare <= 0.9.16.016 phpgwapi/inc/多个SQL注入漏洞
BUGTRAQ ID: 40168 CVE ID: CVE-2010-0404 phpGroupWare是一个用PHP编写的多用户的网络组件,为开发其他程序提供了一个API。 phpGroupWare phpgwapi/inc/目录下的多个脚本没有正确的过滤用户所提交参数,远程攻击者可以通过提交恶意查询请求执行SQL注入攻击。 1 没有正确地过滤提交给多个脚本的sessionid参数便在phpgwapi/inc/class.sessionsdb.inc.php的SQL查询中使用。 2...
phpGroupWare Multiple Vulnerabilities
phpGroupWare is prone to multiple SQL-injection vulnerabilities and to a Local File Include Vulnerability because it fails to sufficiently sanitize user-supplied data before using it. Exploiting these issues could allow an attacker to compromise the application, access or modify data, exploit...
[SECURITY] [DSA-2046-1] New phpgroupware packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-2046-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano May 13, 2010 http://www.debian.org/security/faq -...
DSA-2046-1 phpgroupware - several vulnerabilities
Bulletin has no description...