RSS   Vulnerabilities for 'Tplsoccersite'   RSS

2008-07-21
 
CVE-2008-3251

CWE-89
 

 
Multiple SQL injection vulnerabilities in tplSoccerSite 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the opp parameter to tampereunited/opponent.php; or the id parameter to (2) index.php, (3) player.php, (4) matchdetails.php, or (5) additionalpage.php in tampereunited/.

 

 >>> Vendor: Tpl design 2 Products
Tplshop
Tplsoccersite


Copyright 2024, cxsecurity.com

 

Back to Top