3 matches found
ArticleFR CMS Multiple Vulnerabilities (Jan 2015)
ArticleFR CMS is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-1364
SQL injection vulnerability in the getProfile function in system/profile.functions.php in Free Reprintables ArticleFR 3.0.5 allows remote attackers to execute arbitrary SQL commands via the username parameter to register/...
CVE-2015-1364
CVE-2015-1364 concerns the Free Reprintables ArticleFR CMS 3.0.5. The vulnerability is a SQL injection in the function getProfile (file: system/profile.functions.php) where the vulnerable parameter is username . The query shown is: SELECT ... FROM users WHERE username = '" . $_username . "' which...