3 matches found
Sql injection
SQL injection vulnerability in Forum Livre 1.0 allows remote attackers to execute arbitrary SQL commands via the user parameter to infouser.asp...
CVE-2007-0589
SQL injection vulnerability in Forum Livre 1.0 allows remote attackers to execute arbitrary SQL commands via the user parameter to infouser.asp...
CVE-2007-0589
CVE-2007-0589 affects Forum Livre 1.0 and is a SQL injection vulnerability in the info_user.asp user parameter that could allow remote arbitrary SQL execution. Root cause: unsanitized user input enabling database command execution. Impact: attacker can read/modify data and potentially compromise ...