2 matches found
CVE-2010-1923
CVE-2010-1923 affects Hi Web Wiesbaden Web 2.0 Social Network Freunde Community System. The vulnerability is a SQL injection in user.php that allows an attacker to inject SQL via the id parameter in the showgallery action , leading to possible arbitrary SQL execution. Documents consistently descr...
Web 2.0 Social Network Freunde Community System - user.php SQL Injection
Web 2.0 Social Network Freunde Community System - user.php SQL Injection source: https://www.securityfocus.com/bid/40264/info Web 2.0 Social Network Freunde Community System is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in ...