VWar 1.5 'calendar.php' SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27722/info VWar is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...

VWar 1.5 calendar.php vwar_root Parameter Remote File Inclusion

No description provided by source. source: http://www.securityfocus.com/bid/19387/info VWar is prone to multiple remote file-include vulnerabilities because the application fails to properly sanitize user-supplied input. An attacker can exploit these issues to include an arbitrary remote file...

CVE-2008-0753

SQL injection vulnerability in calendar.php in Virtual War VWar 1.5 allows remote attackers to execute arbitrary SQL commands via the month parameter...

Sql injection

SQL injection vulnerability in calendar.php in Virtual War VWar 1.5 allows remote attackers to execute arbitrary SQL commands via the month parameter...

CVE-2008-0753

CVE-2008-0753 describes an SQL injection in the calendar.php file of Virtual War (VWar) 1.5, exploitable remotely via the month parameter. The vulnerability allows an attacker to execute arbitrary SQL commands. According to the associated records, the issue is triggered by unvalidated input in th...

CVE-2008-0753

SQL injection vulnerability in calendar.php in Virtual War VWar 1.5 allows remote attackers to execute arbitrary SQL commands via the month parameter...

VWar 1.5 - 'calendar.php' SQL Injection

source: https://www.securityfocus.com/bid/27722/info VWar is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or...