3 matches found
Sql injection
SQL injection vulnerability in item.php in Ero Auktion 2010 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2010-0723...
CVE-2010-0723
SQL injection vulnerability in news.php in Ero Auktion 2.0 and 2010 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2010-0723
CVE-2010-0723 is a SQL injection vulnerability in news.php of Ero Auktion 2.0 and 2010. The vulnerability is triggered via the id parameter, allowing remote attackers to execute arbitrary SQL commands. The NVD entry assigns a base score of 7.5 (HIGH) with network attack vector and low complexity,...