4 matches found
Sql injection
SQL injection vulnerability in the LifeType formerly pLog module for Drupal allows remote attackers to execute arbitrary SQL commands via the albumId parameter in a ViewAlbum action to index.php...
CVE-2008-2629
SQL injection vulnerability in the LifeType formerly pLog module for Drupal allows remote attackers to execute arbitrary SQL commands via the albumId parameter in a ViewAlbum action to index.php...
CVE-2008-2629
SQL injection vulnerability in the LifeType formerly pLog module for Drupal allows remote attackers to execute arbitrary SQL commands via the albumId parameter in a ViewAlbum action to index.php...
PLog 1.0.6 - albumID SQL Injection
PLog 1.0.6 - albumID SQL Injection pLog albumId Remote Sql İnj. DreamTurk / [email protected] Down : http://sourceforge.net/project/showfiles.php?groupid=83964&packageid=86556 http://localhost/index.php?op=ViewAlbum&albumId=-1//union//select//0,1,user,password,4,5,6,7,8 from plogusers/&blogId=...