Multiple SQL injection vulnerabilities in JPortal allow remote attackers to execute arbitrary SQL commands via (1) banner.php or the id parameter to (2) print.php, (3) comment.php, and (4) news.php.
References
Link | Resource |
---|---|
http://www.security.nnov.ru/Kdocument105.html | Exploit Vendor Advisory |
http://foro.elhacker.net/index.php?topic=93436.0 | |
http://www.securityfocus.com/bid/15324 | Exploit |
http://www.vupen.com/english/advisories/2005/2310 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2005-11-06 03:02
Updated : 2011-03-07 18:26
NVD link : CVE-2005-3509
Mitre link : CVE-2005-3509
JSON object : View
CWE
Products Affected
jportal
- jportal_web_portal