Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2005-3939

Publish Date: 30 Nov 2005

Author: r0t

                							

                source: http://www.securityfocus.com/bid/15656/info

WSN Knowledge Base is prone to multiple SQL injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query.

Successful exploitation could result in a compromise of the application, disclosure or modification of data, or may permit an attacker to exploit vulnerabilities in the underlying database implementation.

Versions 1.2.0 and prior are reported to be vulnerable; other versions may also be affected. 

http://www.example.com/index.php?action=displaycat&amp;catid=1[SQL]

http://www.example.com/index.php?todo=orderlinks&amp;action=displaycat&amp;
catid=1&amp;orderlinks=id&amp;ascdesc=desc&amp;perpage=1[SQL]

http://www.example.com/index.php?todo=orderlinks&amp;action=displaycat&amp;
catid=1&amp;orderlinks=id&amp;ascdesc=1[SQL]

http://www.example.com/index.php?todo=orderlinks&amp;action=displaycat&amp;
catid=1&amp;orderlinks=[SQL]

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

WSN Knowledge Base 1.2 - 'index.php' Multiple SQL Injections

Vulmon Search

About

Products

Connect