RSS   Podatności dla 'Auth2db'   RSS

2009-04-01
 
CVE-2009-1208

CWE-89
 

 
SQL injection vulnerability in auth2db 0.2.5, and possibly other versions before 0.2.7, uses the addslashes function instead of the mysql_real_escape_string function, which allows remote attackers to conduct SQL injection attacks using multibyte character encodings.

 


Copyright 2024, cxsecurity.com

 

Back to Top