2 matches found
CVE-2007-6727
The CVE-2007-6727 entry describes a SQL injection in KerviNet Forum 1.1, specifically topic.php, where the parameter forum can be exploited to execute arbitrary SQL commands remotely. This is the underlying vulnerability: improper sanitization/parameter handling in the forum parameter leading to ...
kervinet forum 1.1 - Multiple Vulnerabilities
dork: "Copyright KerviNet" eLwauxc 20.06.2009 Blind SQLinj /index.php ------------------------------------------------------------------------------------------------- if$COOKIE'userenter'=="auto" $enterlogin=$COOKIE'enterlogin'; $enterparol=$COOKIE'enterparol'; $mysql-query"SELECT name, pass,...