RSS   Vulnerabilities for 'Phpfix'   RSS

2008-05-28
 
CVE-2008-2479

CWE-89
 

 
Multiple SQL injection vulnerabilities in phpFix 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) kind parameter to fix/browse.php and the (2) account parameter to auth/00_pass.php.

 

 >>> Vendor: Badongo 2 Products
Phpfix
Campus bulletin board


Copyright 2024, cxsecurity.com

 

Back to Top