2 matches found
CVE-2002-2176
SQL injection vulnerability in Gender MOD 1.1.3 allows remote attackers to gain administrative access via the userlevel parameter in the User Profile page...
CVE-2002-2176
The CVE-2002-2176 entry concerns Gender MOD 1.1.3, where a SQL injection vulnerability in the User Profile page (via the user_level parameter) allows remote attackers to gain administrative access. The vulnerability stems from improper handling of user_level input in the profile interface, enabli...