RSS   Vulnerabilities for 'Zmagazine module'   RSS

2007-04-11
 
CVE-2007-1974

CWE-Other
 

 
SQL injection vulnerability in the getArticle function in class/wfsarticle.php in WF-Section (aka WF-Sections) 1.0.1, as used in Xoops modules such as (1) Zmagazine 1.0, (2) Happy Linux XFsection 1.07 and earlier, and possibly other modules, allows remote attackers to execute arbitrary SQL commands via the articleid parameter to print.php.

 

 >>> Vendor: Xoops 44 Products
Xoops
Uploader
Wf-downloads
Xoops pool module
Xoops glossaire module
Xoops rmsoft gallery system
Core module
Library module
Tutoriais module
Friendfinder module
Malaika system myads module
Repository module
Rha7 downloads module
Wf-snippets
Happy linux xfsection module
Zmagazine module
Xoops virii info module
Xoops popnupblog
John mordo jobs module
Flashgames module
Wfquotes module
Myconference module
Icontent module
Cjay content module
Xt-conteudo module
Xfsection module
Horoscope module
Tinycontent module
Wiwimod module
Articles module
Mylinks module
Xoopsgallery module
Mytopics
Eempregos module
Prayer list module
Tiny event module
Xm-memberstats
Xm memberstats
Xoops cube
Article module
Kshop module
Makale
Xoops dictionary
Glossaire module


Copyright 2024, cxsecurity.com

 

Back to Top