Multiple SQL injection vulnerabilities in TemaTres 1.031, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) id_correo_electronico and (2) id_password parameters to login.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
References
Link | Resource |
---|---|
http://osvdb.org/54244 | |
http://secunia.com/advisories/34983 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2009-05-07T23:00:00
Updated: 2009-05-13T09:00:00
Reserved: 2009-05-07T00:00:00
Link: CVE-2009-1585
JSON object: View
NVD Information
Status : Modified
Published: 2009-05-07T23:30:00.377
Modified: 2009-05-13T05:28:07.733
Link: CVE-2009-1585
JSON object: View
Redhat Information
No data.
CWE