CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1 matches found

seebug.org•added 2008/05/02 12:0 a.m.•10 views

OBlog Sql Injection Vulnerability

漏洞文件tags.asp 变量tagid未经过滤传值，带入sql执行，导致注入产生。 3.13-20060429 access & mssql 4.02-20070112 access & mssql 4.50 Final Build0619 access & mssql 4.60 Final Build0921 access & mssql 4.60 Final Build1107 access & mssql 修补方法:检查用户提交的tagid，只允许是数字。例如：将iTagId = TrimRequest.Querystring”tagid”改成iTagId =...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by