RSS   Vulnerabilities for 'Ajaxportal'   RSS

2008-12-17
 
CVE-2008-5653

CWE-89
 

 
SQL injection vulnerability in the loginADP function in ajaxp.php in MyioSoft AjaxPortal 3.0 allows remote attackers to execute arbitrary SQL commands via the rsargs parameter, as reachable through the username parameter. NOTE: some of these details are obtained from third party information.

 
2006-07-18
 
CVE-2006-3666

 

 
SQL injection vulnerability in AjaxPortal 3.0, with magic_quotes_gpc disabled, allows remote attackers to execute arbitrary SQL commands via the 'Search' field, a different vulnerability than CVE-2006-3515.

 
2006-07-11
 
CVE-2006-3515

CWE-Other
 

 
SQL injection vulnerability in the loginADP function in ajaxp.php in AjaxPortal 3.0 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username or (2) password parameters.

 


Copyright 2023, cxsecurity.com

 

Back to Top