RSS   Vulnerabilities for '0.1.1'   RSS

2009-04-01
 
CVE-2009-1208

CWE-89
 

 
SQL injection vulnerability in auth2db 0.2.5, and possibly other versions before 0.2.7, uses the addslashes function instead of the mysql_real_escape_string function, which allows remote attackers to conduct SQL injection attacks using multibyte character encodings.

 


Copyright 2019, cxsecurity.com

 

Back to Top