RSS   Vulnerabilities for 'Pentacle in-out board'   RSS

2006-03-06
 
CVE-2006-1000

CWE-Other
 

 
Multiple SQL injection vulnerabilities in Pentacle In-Out Board 3.0 and earlier allow remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) newsid parameter to newsdetailsview.asp and (2) password parameter to login.asp.

 


Copyright 2024, cxsecurity.com

 

Back to Top