Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2006-3959

Publish Date: 29 Jul 2006

                							

                source: http://www.securityfocus.com/bid/19235/info

X-Protection is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input before using it in an SQL query. 

A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.

X-Protection 1.10 is vulnerable to this issue.

POST:
username='/*&amp;password=*/%20AND%201=0%20UNION%20SELECT%20999/*

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

X-Scripts X-Protection 1.10 - 'Protect.php' SQL Injection

Vulmon Search

About

Products

Connect