RSS   Vulnerabilities for 'Videos broadcast yourself'   RSS

2009-08-21
 
CVE-2009-2924

 

 
Multiple SQL injection vulnerabilities in Videos Broadcast Yourself 2 allow remote attackers to execute arbitrary SQL commands via the (1) UploadID parameter to videoint.php, and possibly the (2) cat_id parameter to catvideo.php and (3) uid parameter to cviewchannels.php.

 


Copyright 2019, cxsecurity.com

 

Back to Top