Tunez 1.21 songinfo.php song_id Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/15548/info Tunez is prone to multiple input validation vulnerabilities. The application is affected by an SQL injection vulnerability and a cross-site scripting issue. Successful exploitation of the SQL injection issue...

CVE-2008-0187

SQL injection vulnerability in songinfo.php in SAM Broadcaster samPHPweb, possibly 4.2.2 and earlier, allows remote attackers to execute arbitrary SQL commands via the songid parameter...

SAM Broadcaster samPHPweb 'songinfo.php' SQL注入漏洞

BUGTRAQ ID: 27147 CNCAN ID:CNCAN-2008010809 SAM Broadcaster samPHPweb是一款基于PHP的WEB应用程序。 SAM Broadcaster samPHPweb不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞进行SQL注入攻击，可获得敏感信息或操作数据库。 问题是由于'songinfo.php'脚本对用户提交的'songid'参数处理缺少充分过滤，提交恶意SQL查询作为参数数据，可更改原来的SQL逻辑，获得敏感信息或操作数据库。 Spacial Audio Solutions SAM Broadcaster...

samPHPweb (songinfo.php) Remote SQL Injection Vulnerability

No description provided by source. Title:samPHPweb songinfo.php Remote SQL Injection Script:samPHPweb Download:http://www.spacialaudio.com/download/samPHPweb.zip Bug:songinfo.php Author:BackDoor Dork1:inurl:samPHPweb/playing.php Dork2:This page was produced using SAM Broadcaster. Copyright Spacia...

samPHPweb 4.2.2 - songinfo.php SQL Injection

samPHPweb 4.2.2 - songinfo.php SQL Injection Title:samPHPweb songinfo.php Remote SQL Injection Script:samPHPweb Download:http://www.spacialaudio.com/download/samPHPweb.zip Bug:songinfo.php Author:BackDoor Dork1:inurl:samPHPweb/playing.php Dork2:This page was produced using SAM Broadcaster. ©...

samPHPweb (songinfo.php) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications =========================================================== samPHPweb songinfo.php Remote SQL Injection Vulnerability =========================================================== Title:samPHPweb songinfo.php Remote SQL Injection...

CVE-2005-3833

SQL injection vulnerability in songinfo.php in Tunez 1.21 and earlier allows remote attackers to execute arbitrary SQL commands via the songid parameter...

CVE-2005-3833

SQL injection vulnerability in songinfo.php in Tunez 1.21 and earlier allows remote attackers to execute arbitrary SQL commands via the songid parameter...