RSS   Vulnerabilities for 'K-search'   RSS

2005-11-29
 
CVE-2005-3868

 

 
Multiple SQL injection vulnerabilities in K-Search 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) term, (2) id, (3) stat, and (4) source parameters to index.php, and (5) through the image parameters with an add request.

 


Copyright 2024, cxsecurity.com

 

Back to Top