6 matches found
EUVD-2008-6950
Malware in sbrugna...
CVE-2008-6991
SQL injection vulnerability in public/page.php in Websens CMSbright allows remote attackers to execute arbitrary SQL commands via the idrubpage parameter...
Sql injection
SQL injection vulnerability in public/page.php in Websens CMSbright allows remote attackers to execute arbitrary SQL commands via the idrubpage parameter...
CVE-2008-6991
SQL injection vulnerability in public/page.php in Websens CMSbright allows remote attackers to execute arbitrary SQL commands via the idrubpage parameter...
CVE-2008-6991
The CVE-2008-6991 entry describes a SQL injection in Websens CMSbright, specifically in public/page.php via the id_rub_page parameter. The vulnerability allows remote attackers to execute arbitrary SQL commands, with impact covering confidentiality, integrity, and availability partials per the NV...
Websens CMSbright 'page.php' SQL注入漏洞
BUGTRAQ ID: 30946 CNCAN ID:CNCAN-2008090205 Websens CMSbright是一款基于PHP的WEB应用程序。 Websens CMSbright不正确处理用户提交的输入,远程攻击者可以利用漏洞进行SQL注入攻击,可能获得敏感信息或操作数据库。 问题由于'page.php'脚本对用户提交给'idrubpage'参数缺少过滤,构建恶意SQL查询作为参数数据,可更改原来的SQL逻辑,获得敏感信息或操作数据库。 Websens CMSbright 目前没有解决方案提供: http://www.cmsbright.com/public/page.ph...