47 matches found
CVE-2007-5934
The LOB functionality in PEAR MDB2 before 2.5.0a1 interprets a request to store a URL string as a request to retrieve and store the contents of the URL, which might allow remote attackers to use MDB2 as an indirect proxy or obtain sensitive information via a URL into a form field in an MDB2...
Fedora 7 : php-pear-Structures-DataGrid-DataSource-MDB2-0.1.10-1.fc7 (2007-0847)
Security fix: users could manipulate the generated sorting queries Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing...
Design/Logic Flaw
Unspecified vulnerability in the fetch function in MDB2.php in PEAR Structures-DataGrid-DataSource-MDB2 0.1.9 and earlier allows attackers to "manipulate the generated sorting queries."...
CVE-2007-3628
Unspecified vulnerability in the fetch function in MDB2.php in PEAR Structures-DataGrid-DataSource-MDB2 0.1.9 and earlier allows attackers to "manipulate the generated sorting queries."...
CVE-2007-3628
CVE-2007-3628 affects PEAR Structures-DataGrid-DataSource-MDB2 up to version 0.1.9, specifically the fetch function in MDB2.php. The vulnerability allows attackers to manipulate generated sorting queries. The connected documents confirm the affected component and the general impact, but do not pr...
CVE-2007-3628
Unspecified vulnerability in the fetch function in MDB2.php in PEAR Structures-DataGrid-DataSource-MDB2 0.1.9 and earlier allows attackers to "manipulate the generated sorting queries."...
[SECURITY] Fedora 7 Update: php-pear-Structures-DataGrid-DataSource-MDB2-0.1.10-1.fc7
This is a DataSource driver for StructuresDataGrid using PEAR::MDB2 and an SQL query...