3 matches found
Sql injection
SQL injection vulnerability in YourAccount.asp in Mini-Nuke 2.3 and earlier allows remote attackers to execute arbitrary SQL commands via the 1 yas1, 2 yas2, and 3 yas3 parameters...
CVE-2006-2732
The CVE-2006-2732 entry concerns a SQL injection vulnerability in Mini-Nuke 2.3 and earlier, specifically in Your_Account.asp. The underlying issue is that the parameters yas_1, yas_2, and yas_3 can be manipulated to inject arbitrary SQL, enabling remote command execution on affected installation...
Advisory: MiniNuke v2.x Multiple Remote Vulnerabilities
Dkmanlar »» Dkman oku --Security Report-- Advisory: MiniNuke v2.x Multiple Remote Vulnerabilities --- Author: Mustafa Can Bjorn "nukedx a.k.a nuker" IPEKCI --- Date: 27/05/06 03:16 PM --- Contacts: ICQ: 10072 MSN/Email: [email protected] Web: http://www.nukedx.com --- Vendor: MiniNuke...