2 matches found
CVE-2005-3408
SQL injection vulnerability in news.php in gCards version 1.43 allows remote attackers to execute arbitrary SQL commands via the limit parameter...
CVE-2005-3408
CVE-2005-3408 : SQL injection in news.php of gCards version 1.43, caused by unsafely using the limit parameter in an SQL query. This enables remote attackers to execute arbitrary SQL commands. The vulnerability is described with a CVSSv2 base score of 7.5 (High) with network attack vector, requir...