Exploit eGroupWare 1.0 - 'index.php?cats_app' SQL Injection

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
25437
Проверка EDB
  1. Пройдено
Автор
GULFTECH SECURITY
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
cve-2005-1203
Дата публикации
2005-04-18
Код:
source: https://www.securityfocus.com/bid/13212/info
   
eGroupWare is prone to multiple input validation vulnerabilities. A fixed version is available.
   
The issues arise due to a failure of the application to properly validate user-supplied input. These issues result in cross-site scripting and SQL injection attacks. 

http://egroupware/index.php?menuaction=preferences.uicategories.index&cats_app=foobar[SQL]
 
Источник
www.exploit-db.com

Похожие темы