4 matches found
CVE-2006-1930
Multiple SQL injection vulnerabilities in userscript.php in Green Minute 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 huserid, 2 pituus, or 3 date parameters. NOTE: this issue has been disputed by the vendor, saying "those parameters mentioned ARE checked...
CVE-2006-1930
Multiple SQL injection vulnerabilities in userscript.php in Green Minute 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 huserid, 2 pituus, or 3 date parameters. NOTE: this issue has been disputed by the vendor, saying "those parameters mentioned ARE checked...
CVE-2006-1930
Green Minute, versions 1.0 and earlier, contains multiple SQL injection vulnerabilities in userscript.php exploitable via the huserid, pituus, or date parameters. The vendor disputes the flaw, claiming those parameters are checked with preg_match before use, and CVE analyses found only non-sensit...
PT-2006-2914 · Unknown · Green Minute
Name of the Vulnerable Software and Affected Versions: Green Minute versions 1.0 and earlier Description: Multiple SQL injection vulnerabilities in userscript.php allow remote attackers to execute arbitrary SQL commands via the huserid, pituus, or date parameters. The vendor has disputed this...