EUVD-2006-2901

Malware in sbrugna...

Sql injection

SQL injection vulnerability in index.php in Partial Links 1.2.2 allows remote attackers to execute arbitrary SQL commands via the topic parameter...

Information disclosure

Partial Links 1.2.2 allows remote attackers to obtain sensitive information via a direct request to 1 pagefooter.php and 2 pageheader.php, which displays the path in an error message...

CVE-2006-2905

Partial Links 1.2.2 allows remote attackers to obtain sensitive information via a direct request to 1 pagefooter.php and 2 pageheader.php, which displays the path in an error message...

CVE-2006-2904

SQL injection vulnerability in index.php in Partial Links 1.2.2 allows remote attackers to execute arbitrary SQL commands via the topic parameter...

CVE-2006-2905

Partial Links 1.2.2 allows remote attackers to obtain sensitive information via a direct request to 1 pagefooter.php and 2 pageheader.php, which displays the path in an error message...

CVE-2006-2904

The CVE-2006-2904 entry describes an SQL injection vulnerability in Partial Links 1.2.2, specifically in index.php and exploitable via the topic parameter. The underlying issue is improper input handling that allows an attacker to inject and execute arbitrary SQL commands on the backend database....

CVE-2006-2905

Partial Links 1.2.2 is affected. Remote attackers can disclose sensitive information by requesting page_footer.php or page_header.php, which reveals the path in an error message. The provided documents do not specify a fix or workaround.