3 matches found
Authentication flaw
phpLinkat 0.1 allows remote attackers to bypass authentication and access unspecified pages under admin/ by sending a login=right cookie...
CVE-2008-3406
SQL injection vulnerability in showcat.php in phpLinkat 0.1 allows remote attackers to execute arbitrary SQL commands via the catid parameter...
CVE-2008-3406
The CVE-2008-3406 entry describes a SQL injection vulnerability in showcat.php of phpLinkat 0.1, where the catid parameter can be exploited to execute arbitrary SQL commands remotely. The connected documents corroborate the vulnerability class (SQL injection) and the affected component (phpLinkat...