3 matches found
Sql injection
Multiple SQL injection vulnerabilities in Tausch Ticket Script 3 allow remote attackers to execute arbitrary SQL commands via the 1 userid parameter to suchauftraegeuser.php and the 2 descr parameter to vote.php; and other unspecified vectors...
CVE-2009-2428
Multiple SQL injection vulnerabilities in Tausch Ticket Script 3 allow remote attackers to execute arbitrary SQL commands via the 1 userid parameter to suchauftraegeuser.php and the 2 descr parameter to vote.php; and other unspecified vectors...
CVE-2009-2428
The CVE-2009-2428 entry concerns the Tausch Ticket Script 3 with multiple SQL injection vulnerabilities. The documented vectors include the (1) userid parameter to suchauftraege_user.php and the (2) descr parameter to vote.php, plus other unspecified vectors. Attack potential is remote, enabling ...