Multiple SQL injection vulnerabilities in Geeklog 1.4.0 before 1.4.0sr1 and 1.3.11 before 1.3.11sr4 allow remote attackers to inject arbitrary SQL commands via the (1) userid variable to users.php or (2) sessid variable to lib-sessions.php.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2006-02-21T23:00:00
Updated: 2018-10-18T14:57:01
Reserved: 2006-02-21T00:00:00
Link: CVE-2006-0823
JSON object: View
NVD Information
Status : Modified
Published: 2006-02-21T23:02:00.000
Modified: 2018-10-18T16:29:17.413
Link: CVE-2006-0823
JSON object: View
Redhat Information
No data.
CWE