7 matches found
EUVD-2007-6457
Malware in sbrugna...
CVE-2007-6491
Multiple SQL injection vulnerabilities in Kvaliitti WebDoc 3.0 CMS allow remote attackers to execute arbitrary SQL commands via 1 the catid parameter to categories.asp; and probably 2 the documentid parameter to categories.asp, and the 3 catid and 4 documentid parameters to subcategory.asp...
CVE-2007-6491
Multiple SQL injection vulnerabilities in Kvaliitti WebDoc 3.0 CMS allow remote attackers to execute arbitrary SQL commands via 1 the catid parameter to categories.asp; and probably 2 the documentid parameter to categories.asp, and the 3 catid and 4 documentid parameters to subcategory.asp...
CVE-2007-6491
Kvaliitti WebDoc 3.0 CMS is affected by multiple SQL injection vulnerabilities. The issues allow remote attackers to execute arbitrary SQL commands via (1) cat_id in categories.asp, (2) document_id in categories.asp, and (3)/(4) cat_id and document_id in subcategory.asp. Root cause is unsafely ha...
Kvaliitti WebDoc 3.0 CMS SQL Injection vulnerability
Found by: Jaakko "Chrysalid" Hartikainen 1. Info Kvaliitti WebDoc 3.0 CMS is a proprietary Finnish-made content management system developed by Kvaliitti Oy http://www.kvaliitti.fi. It is driven by MS SQL Server and ASP. 2. Abstract WebDoc 3.0 suffers from a flaw in input validation, which allows...
kvaliitti-sql.txt
Found by: Jaakko "Chrysalid" Hartikainen 1. Info Kvaliitti WebDoc 3.0 CMS is a proprietary Finnish-made content management system developed by Kvaliitti Oy http://www.kvaliitti.fi. It is driven by MS SQL Server and ASP. 2. Abstract WebDoc 3.0 suffers from a flaw in input validation, which allows...
WebDoc 3.0 - Multiple SQL Injections
WebDoc 3.0 - Multiple SQL Injections source: https://www.securityfocus.com/bid/26761/info WebDoc is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...