3 matches found
CVE-2007-6602
SQL injection vulnerability in app/models/identity.php in NoseRub 0.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the username field to the login script...
Sql injection
SQL injection vulnerability in app/models/identity.php in NoseRub 0.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the username field to the login script...
CVE-2007-6602
CVE-2007-6602 describes a SQL injection in NoseRub, affecting version 0.5.2 and earlier. The vulnerability occurs in the login script via the username field and targets the code path in app/models/identity.php . Root cause is improper handling of user input leading to arbitrary SQL execution by r...