4 matches found
EUVD-2010-0431
Malware in sbrugna...
CVE-2010-0400
SQL injection vulnerability in lib/user.php in mahara 1.0.4 allows remote attackers to execute arbitrary SQL commands via a username...
Sql injection
SQL injection vulnerability in lib/user.php in mahara 1.0.4 allows remote attackers to execute arbitrary SQL commands via a username...
CVE-2010-0400
CVE-2010-0400 affects mahara 1.0.4, with a SQL injection in lib/user.php exploitable via the username. Multiple openvas/Red Hat/Debian entries confirm the issue and tie it to improper handling/escaping when generating a unique username from a remote user (SSO). Impact: remote attacker could alter...