3 matches found
Sql injection
Multiple SQL injection vulnerabilities in INVOhost 3.4 allow remote attackers to execute arbitrary SQL commands via the 1 id and 2 newlanguage parameters to site.php, 3 search parameter to manuals.php, and 4 unspecified vectors to faq.php. NOTE: some of these details are obtained from third party...
CVE-2010-1336
Multiple SQL injection vulnerabilities in INVOhost 3.4 allow remote attackers to execute arbitrary SQL commands via the 1 id and 2 newlanguage parameters to site.php, 3 search parameter to manuals.php, and 4 unspecified vectors to faq.php. NOTE: some of these details are obtained from third party...
CVE-2010-1336
INVOhost 3.4 is affected by multiple SQL injection vulnerabilities. The CVE-2010-1336 entry states remote attackers can execute arbitrary SQL via (1) id and (2) newlanguage parameters to site.php, (3) search parameter to manuals.php, and (4) unspecified vectors to faq.php. The OpenVAS/Duplicate e...