CVE-2008-0129

SQL injection vulnerability in starnet/addons/slideshowfull.php in Site@School 2.3.10 and earlier allows remote attackers to execute arbitrary SQL commands via the albumname parameter...

CVE-2008-0129

SQL injection vulnerability in starnet/addons/slideshowfull.php in Site@School 2.3.10 and earlier allows remote attackers to execute arbitrary SQL commands via the albumname parameter...

Site@School <= 2.3.10 Remote Blind SQL Injection Exploit

No description provided by source. ? / -------------------------------------------------------- Site@School = 2.3.10 Remote Blind SQL Injection Exploit -------------------------------------------------------- author...: EgiX mail.....: n0b0d13satgmaildotcom link.....: http:// details..: works wit...

Site@School slideshow_full.php album_name Parameter SQL Injection

The remote host is running Site@School, an open source, PHP-based, content management system intended for primary schools. The version of this software installed on the remote host fails to sanitize user-supplied input to the 'albumname' parameter of the 'starnet/addons/slideshowfull.php' script...