RSS   Podatności dla 'Esyndicat directory'   RSS

2007-07-16
 
CVE-2007-3811

 
 
Multiple SQL injection vulnerabilities in eSyndiCat allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to news.php or (2) the name parameter to page.php.

 
2006-05-24
 
CVE-2006-2578

 
 
admin/cron.php in eSyndicat Directory 1.2, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to include arbitrary files and possibly execute arbitrary PHP code via a null-terminated value in the path_to_config parameter.

 

 >>> Vendor: Esyndicat 4 Produkty
Esyndicat directory
Esyndicat pro
Esyndicat link exchange
Esyndicat

Copyright 2024, cxsecurity.com

 

Back to Top