5 matches found
CVE-2010-1583
SQL injection vulnerability in the loadByKey function in the TznDbConnection class in tznmysql.php in Tirzen aka TZN Framework 1.5, as used in TaskFreak! before 0.6.3, allows remote attackers to execute arbitrary SQL commands via the username field in a login action...
CVE-2010-1583
SQL injection vulnerability in the loadByKey function in the TznDbConnection class in tznmysql.php in Tirzen aka TZN Framework 1.5, as used in TaskFreak! before 0.6.3, allows remote attackers to execute arbitrary SQL commands via the username field in a login action...
CVE-2010-1583
The connected OpenVAS/NASL entry confirms a concrete SQL injection in TaskFreak! 0.6.x using the Tirzen Framework 1.5, affecting the loadByKey() path in TznDbConnection (tzn_mysql.php). The vulnerability is exploitable via the username field in login, permitting unauthenticated remote attackers t...
TaskFreak 0.6.2 - SQL Injection
CVE-2010-1583 Vendor notified and product update released. Details of this report are also available at http://www.madirish.net/?article=456 Description of Vulnerability: - ------------------------------ The Tirzen Framework http://www.tirzen.net/tzn/ is a supporting API developed by Tirzen...
Task Freak 0.6.2 SQL Injection
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2010-1583 Vendor notified and product update released. Details of this report are also available at http://www.madirish.net/?article=456 Description of Vulnerability: - ------------------------------ The Tirzen Framework http://www.tirzen.net/tzn/...