2 matches found
CVE-2014-8351
CVE-2014-8351 concerns CNIL CookieViz (info.php) prior to 1.0.1, where a SQL injection via the domain parameter allows remote servers to execute arbitrary SQL commands. The vulnerability affects CookieViz’s handling of input in info.php, enabling attacker-controlled SQL execution. Public referenc...
CNIL CookieViz Cross Site Scripting / SQL Injection Vulnerabilities
CNIL CookieViz suffers from cross site scripting and remote SQL injection vulnerabilities. CNIL CookieViz XSS + SQL injection leading to user pwnage Product link: https://github.com/LaboCNIL/CookieViz CVE references CVE-2014-8351, CVE-2014-8352 TL;DR ----- Since October 2014, the French National...