2 matches found
CVE-2006-1930
Green Minute, versions 1.0 and earlier, contains multiple SQL injection vulnerabilities in userscript.php exploitable via the huserid, pituus, or date parameters. The vendor disputes the flaw, claiming those parameters are checked with preg_match before use, and CVE analyses found only non-sensit...
PT-2006-2914 · Unknown · Green Minute
Name of the Vulnerable Software and Affected Versions: Green Minute versions 1.0 and earlier Description: Multiple SQL injection vulnerabilities in userscript.php allow remote attackers to execute arbitrary SQL commands via the huserid, pituus, or date parameters. The vendor has disputed this...