exploits , vulnerabilities , articles , Invision Community Blog EID Parameter SQL Injection Vulnerability

Title	Invision Community Blog EID Parameter SQL Injection Vulnerability
Published	2006-11-18-12:00AM
Updated	2006-12-04-06:09PM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	infection@mail.kz is credited with the discovery of this vulnerability.
Vulnerable	Invision Power Services Invision Community Blog 1.2.4
Not Vulnerable
Code	An attacker can exploit this issue via a web client. The following exploit code is available: /data/vulnerabilities/exploits/21374.txt
TXT

Vulnerabilities - newest 10 RSS | More

• 2008-12-03 IBM Rational ClearQuest Maintenance Tool Local Information Disclosure Vulnerability
• 2008-12-03 VMware Products Unspecified Host Memory Corruption Vulnerability
• 2008-12-03 IBM Rational ClearQuest Web Multiple Unspecified Cross Site Scripting Vulnerabilities
• 2008-12-02 RakhiSoftware Shopping Cart Multiple Remote Vulnerabilities
• 2008-12-02 Softbiz Classifieds Script Multiple Cross Site Scripting Vulnerabilities
• 2008-12-02 CodeToad ASP Shopping Cart Script Cross Site Scripting Vulnerability
• 2008-12-02 xrdp Multiple Buffer Overflow Vulnerabilities
• 2008-12-02 FFmpeg Multiple Denial of Service Vulnerabilities
• 2008-12-01 SystemImager Flamethrower Insecure Temporary File Creation Vulnerabilities
• 2008-12-01 Rumpus FTP Server Command Argument Remote Buffer Overflow Vulnerability

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Wed, 03 Dec 2008 19:40:53 +0000