Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

XOOPS 2.0.17.1 Mylinks Module - 'Brokenlink.php' SQL Injection

Related Vulnerabilities: CVE-2007-5978  
Publish Date: 09 Nov 2007
Author: root@hanicker.it
Source / Download Exploit 
                source: http://www.securityfocus.com/bid/26392/info

Xoops Mylinks module is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query.

Exploiting this vulnerability could permit remote attackers to pass malicious input to database queries, resulting in the modification of query logic or other attacks.

Xoops 2.0.17.1 is vulnerable; other versions may also be affected. 

http://www.example.com.com/modules/mylinks/brokenlink.php?lid=1%20OR%201=2

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started