RSS   Vulnerabilities for 'Php dir submit'   RSS

2009-11-18
 
CVE-2009-3970

 

 
SQL injection vulnerability in index.php in PHP Dir Submit (aka WebsiteSubmitter or Submitter Script) allows remote authenticated users to execute arbitrary SQL commands via the aid parameter in a showarticle action.

 
2009-05-26
 
CVE-2009-1787

CWE-89
 

 
Multiple SQL injection vulnerabilities in PHP Dir Submit (aka WebsiteSubmitter and Submitter Script) allow remote attackers to bypass authentication and gain administrative access via the (1) username and (2) password parameters.

 


Copyright 2024, cxsecurity.com

 

Back to Top