RSS   Vulnerabilities for 'Subdreamer'   RSS

2010-06-18
 
CVE-2010-2339

CWE-89
 

 
SQL injection vulnerability in admin/pages.php in Subdreamer CMS 3.x.x allows remote attackers to execute arbitrary SQL commands via the categoryids[] parameter in an update_pages action.

 
2005-11-01
 
CVE-2005-3423

 

 
Multiple SQL injection vulnerabilities in Subdreamer 2.2.1 allow remote attackers to execute arbitrary SQL commands via (1) the loginusername parameter or (2) cookies to (a) subdreamer.php, (b) ipb2.php, (c) phpbb2.php, (d) vbulletin2.php, and (e) vbulletin3.php.

 

 >>> Vendor: Subdreamer 2 Products
Subdreamer light
Subdreamer


Copyright 2017, cxsecurity.com

 

Back to Top