184 matches found
Joomla component com_availcal parameter id SQL injection vulnerability
No description provided by source...
Open-school 1.0 (id) Remote SQL Injection Vulnerability
No description provided by source. Cms : Open-school Version : 1.0 Archivo : Index.php Parametro : id Sitio :http://open-school.org Url Vulnz :http://site.com/index.php?module=osnews&view=show&id=SQLI Demo Injection: Admin User,Pass:...
Sql injection
SQL injection vulnerability in the comdetail component for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php. NOTE: this issue might be site-specific. If so, it should not be included in CVE...
PHP ZLink 'go.php' SQL注入漏洞
PHP ZLink是一款基于PHP的WEB应用程序。 PHP ZLink不正确过滤用户提交的URI数据,远程攻击者可以利用漏洞进行SQL注入攻击,可获得敏感信息或操作数据库。 问题是由于'go.php'脚本对用户提交的WEB参数处理缺少充分过滤,提交恶意SQL查询作为参数数据,可更改原来的SQL逻辑,获得敏感信息或操作数据库。 Zeak.net PHP ZLink 0.3 目前没有解决方案提供: http://www.zeak.net/ !/usr/bin/perl use LWP::UserAgent; use Getopt::Long; if!$ARGV3 print "\n \'/...