6 matches found
EUVD-2007-1074
Malware in sbrugna...
Sql injection
SQL injection vulnerability in page.asp in Design4Online UserPages2 2.0 allows remote attackers to execute arbitrary SQL commands via the artid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2007-1077
SQL injection vulnerability in page.asp in Design4Online UserPages2 2.0 allows remote attackers to execute arbitrary SQL commands via the artid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2007-1077
SQL injection vulnerability in page.asp in Design4Online UserPages2 2.0 allows remote attackers to execute arbitrary SQL commands via the artid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2007-1077
CVE-2007-1077 affects Design4Online UserPages2 2.0 and is due to an SQL injection in page.asp, exploitable via the art_id parameter. The vulnerability allows remote attackers to execute arbitrary SQL commands, with potential impact on data confidentiality, integrity, and availability as described...
Design4Online - 'Userpages2 Page.asp' SQL Injection
source: https://www.securityfocus.com/bid/22636/info Userpages2 is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...