RSS   Vulnerabilities for 'Flexphpnews'   RSS

2009-01-21
 
CVE-2008-5927

CWE-89
 

 
Multiple SQL injection vulnerabilities in admin/usercheck.php in FlexPHPNews 0.0.6 allow remote attackers to execute arbitrary SQL commands via the (1) checkuser parameter (aka username field) or (2) checkpass parameter (aka password field) to admin/index.php. NOTE: some of these details are obtained from third party information.

 
2005-05-02
 
CVE-2005-1237

 

 
SQL injection vulnerability in news.php in FlexPHPNews 0.0.3 allows remote attackers to execute arbitrary SQL commands via the newsid parameter.

 

 >>> Vendor: China-on-site 6 Products
Flexphpnews
Flexphpic
Flexphpsite
Flexphplink
Flexphpdirectory
Flexcustomer0.0.6


Copyright 2024, cxsecurity.com

 

Back to Top