5 matches found
CVE-2009-0882
Multiple SQL injection vulnerabilities in nForum 1.5 allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to showtheme.php and the 2 user parameter to userinfo.php...
Sql injection
Multiple SQL injection vulnerabilities in nForum 1.5 allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to showtheme.php and the 2 user parameter to userinfo.php...
CVE-2009-0882
Multiple SQL injection vulnerabilities in nForum 1.5 allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to showtheme.php and the 2 user parameter to userinfo.php...
CVE-2009-0882
CVE-2009-0882 corresponds to multiple SQL injection vulnerabilities in nForum 1.5. The affected components are the PHP scripts showtheme.php (id parameter) and userinfo.php (user parameter), with root cause described as insufficient input sanitization in SQL queries. Impact per sources indicates ...
nForum 1.5 SQL Injection
Salvatore "drosophila" Fresta + Application: nForum + Version: 1.5 + Website: http://sourceforge.net/projects/nforum/ + Bugs: A Multiple SQL Injection + Exploitation: Remote + Date: 06 Mar 2009 + Discovered by: Salvatore "drosophila" Fresta + Author: Salvatore "drosophila" Fresta + Contact: e-mai...