|
|
CVE Reference: CVE-2006-2029 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-2029 |
|
|
Description: Multiple SQL injection vulnerabilities in Jeremy Ashcraft Simplog 0.9.3 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) tid parameter in (a) preview.php; the (2) cid, (3) pid, and (4) eid parameters in (b) archive.php; and the (5) pid parameter in (c) comments.php. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/25982 ST 1015976 SREASON http://securityreason.com/securityalert/799 SAID Secunia Advisory: SA19764 OSVDB 24878 24879 24877 MISC http://www.nukedx.com/?getxpl=25 FULLDISC http://archives.neohapsis.com/archives/fulldisclosure/2006-04/0649.html CONFIRM http://www.simplog.org/archive.php?blogid=1&pid=57 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/431760/100/0/threaded |
|
| Return to the previous page. |
