RSS   Vulnerabilities for 'Php article publisher'   RSS

2010-04-23
 
CVE-2009-4808

CWE-287
 

 
admin.php in Graugon PHP Article Publisher 1.0 allows remote attackers to bypass authentication and obtain administrative access by setting the g_admin cookie to 1.

 
 
CVE-2009-4807

CWE-89
 

 
Multiple SQL injection vulnerabilities in Graugon PHP Article Publisher 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) c parameter to index.php and the (2) id parameter to view.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top