5 matches found
EUVD-2006-1766
Malware in sbrugna...
CVE-2006-3572
The vulnerability CVE-2006-3572 affects Papoo 3 RC3 and earlier, specifically the forumthread.php component. The root cause is an SQL injection in the msgid parameter, which could allow remote attackers to execute arbitrary SQL commands. The issue is documented with a base CVSS v2 score of 7.5 (H...
Sql injection
Multiple SQL injection vulnerabilities in Papoo 2.1.5, and 3 beta1 and earlier, allow remote attackers to execute arbitrary SQL commands via the 1 getlang and 2 reporeid parameter in a index.php, 3 menuid parameter in b plugin.php and c forumthread.php, and 4 msgid parameter in forumthread.php...
CVE-2006-1766
Multiple SQL injection vulnerabilities in Papoo 2.1.5, and 3 beta1 and earlier, allow remote attackers to execute arbitrary SQL commands via the 1 getlang and 2 reporeid parameter in a index.php, 3 menuid parameter in b plugin.php and c forumthread.php, and 4 msgid parameter in forumthread.php...
Papoo Multiple SQL vuln.
Papoo Multiple SQL vuln. Vuln. discovered by : r0t Date: 10 april 2006 vendor:http://www.papoo.de/ affected versions: 2.1.5 & 3 beta1 and previous Vuln. description: Papoo contains a flaw that allows a remote sql injection attacks.Inputpassed to the "getlang","reporeid" parameters in " index.php"...