RSS   Vulnerabilities for 'Ultra plus'   RSS

2008-09-25
 
CVE-2008-4241

CWE-89
 

 
SQL injection vulnerability in CJ Ultra Plus 1.0.4 and earlier allows remote attackers to execute arbitrary SQL commands via an SID cookie.

 
2005-05-11
 
CVE-2005-1506

 

 
SQL injection vulnerability in out.php in CJ Ultra (CJUltra) Plus 1.0.3 and 1.0.4 allows remote attackers to execute arbitrary SQL commands via the perm parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top