Sql injection

SQL injection vulnerability in profil.php in PwsPHP 1.2.3, and possibly earlier versions, allows remote attackers to execute arbitrary SQL commands via the affnewsform parameter, a different vulnerability than CVE-2005-1509...

CVE-2006-0943

The CVE-2006-0943 issue affects PwsPHP 1.2.3, specifically the sondages module’s index.php. The underlying vulnerability is a SQL injection via the id parameter to index.php, enabling remote attackers to execute arbitrary SQL commands. The available connected records corroborate the same descript...

CVE-2006-0943

SQL injection vulnerability in the sondages module in index.php in PwsPHP 1.2.3 allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php...

Sql injection

SQL injection vulnerability in index.php in PwsPHP 1.2.3 allows remote attackers to execute arbitrary SQL commands via the id parameter, possibly in message.php in the espacemembre module. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

CVE-2006-0668

SQL injection vulnerability in index.php in PwsPHP 1.2.3 allows remote attackers to execute arbitrary SQL commands via the id parameter, possibly in message.php in the espacemembre module. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...

CVE-2006-0668

CVE-2006-0668 describes an SQL injection in the PHP application PwsPHP 1.2.3, specifically via the id parameter in index.php (and possibly in message.php within the espace_membre module). The underlying issue is a lack of input validation/safe query construction, enabling remote attackers to exec...