SQL injection in Serendipity

Advisory ID: HTB23092 Product: Serendipity Vendor: Serendipity Team Vulnerable Versions: 1.6.1 and probably prior Tested Version: 1.6.1 Vendor Notification: 16 May 2012 Vendor Patch: 16 May 2012 Public Disclosure: 6 June 2012 Vulnerability Type: SQL injection CVE Reference: CVE-2012-2762 CVSSv2...

CVE-2012-2762

SQL injection vulnerability in include/functionstrackbacks.inc.php in Serendipity 1.6.2 allows remote attackers to execute arbitrary SQL commands via the url parameter to comment.php...

CVE-2012-2762

SQL injection vulnerability in include/functionstrackbacks.inc.php in Serendipity 1.6.2 allows remote attackers to execute arbitrary SQL commands via the url parameter to comment.php...

CVE-2012-2762

Vulnerability: Serendipity 1.6.2 is affected by a SQL injection in include/functions_trackbacks.inc.php, exploitable via the url parameter to comment.php. Root cause: insufficient sanitization of user-supplied input used in SQL queries, enabling arbitrary SQL commands. Impact: potential data disc...

CVE-2012-2762

SQL injection vulnerability in include/functionstrackbacks.inc.php in Serendipity 1.6.2 allows remote attackers to execute arbitrary SQL commands via the url parameter to comment.php...

Serendipity 1.6.1 SQL Injection

Advisory ID: HTB23092 Product: Serendipity Vendor: Serendipity Team Vulnerable Versions: 1.6.1 and probably prior Tested Version: 1.6.1 Vendor Notification: 16 May 2012 Vendor Patch: 16 May 2012 Public Disclosure: 6 June 2012 Vulnerability Type: SQL injection CVE Reference: CVE-2012-2762 CVSSv2...

Serendipity 1.6.1 SQL Injection Vulnerability

Exploit for php platform in category web applications Product: Serendipity Vendor: Serendipity Team Vulnerable Versions: 1.6.1 and probably prior Tested Version: 1.6.1 Vendor Notification: 16 May 2012 Vendor Patch: 16 May 2012 Public Disclosure: 6 June 2012 Vulnerability Type: SQL injection CVE...