5 matches found
CVE-2014-3119
CVE-2014-3119 affects web2Project 3.1 and earlier. The vulnerability is due to insufficient sanitization of user inputs, allowing remote authenticated users to inject arbitrary SQL via the POST parameter search_string (index.php, contacts module) or via updatekey (do_updatecontact.php) or updatek...
Multiple SQL Injection Vulnerabilities in web2Project
Advisory ID: HTB23213 Product: web2Project Vendor: http://web2project.net Vulnerable Versions: 3.1 and probably prior Tested Version: 3.1 Advisory Publication: April 30, 2014 without technical details Vendor Notification: April 30, 2014 Vendor Patch: May 1, 2014 Public Disclosure: June 18, 2014...
web2Project 3.1 - Multiple Vulnerabilities
web2Project 3.1 - Multiple Vulnerabilities Advisory ID: HTB23213 Product: web2Project Vendor: http://web2project.net Vulnerable Versions: 3.1 and probably prior Tested Version: 3.1 Advisory Publication: April 30, 2014 without technical details Vendor Notification: April 30, 2014 Vendor Patch: May...
web2Project 3.1 SQL Injection Vulnerability
Exploit for php platform in category web applications Product: web2Project Vendor: http://web2project.net Vulnerable Versions: 3.1 and probably prior Tested Version: 3.1 Advisory Publication: April 30, 2014 without technical details Vendor Notification: April 30, 2014 Vendor Patch: May 1, 2014...
web2Project 3.1 - Multiple Vulnerabilities
Advisory ID: HTB23213 Product: web2Project Vendor: http://web2project.net Vulnerable Versions: 3.1 and probably prior Tested Version: 3.1 Advisory Publication: April 30, 2014 without technical details Vendor Notification: April 30, 2014 Vendor Patch: May 1, 2014 Public Disclosure: June 18, 2014...