4 matches found
CVE-2010-1071
The CVE-2010-1071 entry concerns a SQL injection in profil.php of phpMDJ 1.0.3, exploitable via the id parameter to allow remote execution of arbitrary SQL commands. Affected component: profil.php in phpMDJ 1.0.3; root cause: unsafely constructed SQL using user-supplied id. Documented impact: rem...
phpMDJ 1.0.3 - SQL Injection
,--------------------------------------------------------------, Vulnerable Script : phpMDJ 1.0.3 \ Download : http://www.weboac.be/phpmdj/docs/phpmdj1.0.3.zip \ Vulnerability : Remote Sql Injection \ '--------------------------------------------------------------'...
phpMDJ 1.0.3 - id_animateur Blind SQL Injection
phpMDJ 1.0.3 - idanimateur Blind SQL Injection --+++=========================================================+++-- --+++====== phpMDJ :.+/", $reply, $x; if strlen trim $x 1 == 0 return false; else return true; function usage echo "\n+ phpMDJ ". "\n+ Ex. : php xpl.php localhost /phpMDJ admin"...
phpMDJ 1.0.3 - 'id_animateur' Blind SQL Injection
--+++=========================================================+++-- --+++====== phpMDJ :.+/", $reply, $x; if strlen trim $x 1 == 0 return false; else return true; function usage echo "\n+ phpMDJ ". "\n+ Ex. : php xpl.php localhost /phpMDJ admin". "\n\n"; exit ; if $argc != 4 usage ; $hostname =...