CVE Reference: CVE-2012-4925

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2012-4925

Description:
Multiple SQL injection vulnerabilities in approve.php in Img Pals Photo Host 1.0 allow remote attackers to execute arbitrary SQL commands via the u parameter in a (1) app0 or (2) app1 action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/73526

SAID
  Secunia Advisory: SA48182

OSVDB
  79670

EXPLOIT-DB
  http://www.exploit-db.com/exploits/18544

BUGTRAQ
  http://archives.neohapsis.com/archives/bugtraq/2012-02/0180.html

BID
  52195


Return to the previous page.