Multiple SQL injection vulnerabilities in PHP Newsfeed 20040723 allow remote attackers to execute arbitrary SQL commands via the (1) name parameter to (a) deltables.php, (2) select, (3) header, (4) url, (5) source, or (6) time parameters to (b) manualsubmit.php, (7) num parameter to (c) delete.php, or (8) tablename parameter to (d) searchnews.php.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2006-05-02T10:00:00
Updated: 2024-08-07T17:35:31.428Z
Reserved: 2006-05-01T00:00:00
Link: CVE-2006-2139
Vulnrichment
No data.
NVD
Status : Modified
Published: 2006-05-02T10:02:00.000
Modified: 2024-11-21T00:10:38.767
Link: CVE-2006-2139
Redhat
No data.