4 matches found
Sql injection
Multiple SQL injection vulnerabilities in Creative Community Portal 1.1 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 articleid parameter to a ArticleView.php, 2 forumid parameter to b DiscView.php or c Discussions.php, 3 eventid parameter to d EventView.php, 4...
CVE-2006-2255
Multiple SQL injection vulnerabilities in Creative Community Portal 1.1 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 articleid parameter to a ArticleView.php, 2 forumid parameter to b DiscView.php or c Discussions.php, 3 eventid parameter to d EventView.php, 4...
CVE-2006-2255
Multiple SQL injection vulnerabilities in Creative Community Portal 1.1 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 articleid parameter to a ArticleView.php, 2 forumid parameter to b DiscView.php or c Discussions.php, 3 eventid parameter to d EventView.php, 4...
Creative Software UK Community Portal 1.1 - EventView.php?event_id SQL Injection
Creative Software UK Community Portal 1.1 - EventView.php?eventid SQL Injection source: https://www.securityfocus.com/bid/17890/info Creative Community Portal is prone to multiple SQL-injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplie...