8 matches found
EUVD-2006-6198
Malware in sbrugna...
CVE-2006-6215
Multiple SQL injection vulnerabilities in Wallpaper Website Wallpaper Complete Website 1.0.09 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 login or 2 password parameter to a process.php, or the 3 wallpaperid parameter to b dlwallpaper.php...
CVE-2006-6214
SQL injection vulnerability in wallpaper.php in Wallpaper Website Wallpaper Complete Website 1.0.09 allows remote attackers to execute arbitrary SQL commands via the wallpaperid parameter...
CVE-2006-6215
CVE-2006-6215 affects Wallpaper Website (Wallpaper Complete Website) versions 1.0.09 and earlier. The vulnerability is Multiple SQL injection flaws in process.php (login or password parameters) and in dlwallpaper.php (wallpaperid parameter) that allow remote attackers to execute arbitrary SQL com...
CVE-2006-6215
Multiple SQL injection vulnerabilities in Wallpaper Website Wallpaper Complete Website 1.0.09 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 login or 2 password parameter to a process.php, or the 3 wallpaperid parameter to b dlwallpaper.php...
CVE-2006-6214
SQL injection vulnerability in wallpaper.php in Wallpaper Website Wallpaper Complete Website 1.0.09 allows remote attackers to execute arbitrary SQL commands via the wallpaperid parameter...
CVE-2006-6214
CVE-2006-6214: SQL injection in Wallpaper Website (Wallpaper Complete Website) 1.0.09, via wallpaperid parameter in wallpaper.php. Remote attackers can execute arbitrary SQL commands. Affected software is the Wallpaper Website product as listed; CVSS v2 base score 7.5 (HIGH) with partial impact o...
Wallpaper Complete Website Wallpaper.PHP SQL注入漏洞
Wallpaper Complete Website是一款基于PHP的WEB应用程序。 Wallpaper Complete Website不充分过滤用户提交的URI输入,远程攻击者可以利用漏洞进行SQL注入攻击,获得敏感信息。 问题是'Wallpaper.PHP'脚本对用户提交的'wallpaperid'参数缺少过滤,提交恶意SQL查询作为参数数据,可更改原来的SQL逻辑,获得敏感信息。 Wallpaper Wallpaper Complete Website 1.0.9...