Required CVE Record Information
Description
SQL injection vulnerability in index.php in Invision Power Top Site List 1.1 RC 2 and earlier allows remote attackers to execute arbitrary SQL via the id parameter of the comments action.
References 5 Total
- marc.info: 20040322 Invision Power Top Site List SQL Injection Vulnerability mailing-list
- exchange.xforce.ibmcloud.com: invision-id-sql-injection(15568) vdb-entry
- securitytracker.com: 1009511 vdb-entry
- secunia.com: 11187 third-party-advisory
- securityfocus.com: 9945 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 5 Total
- marc.info: 20040322 Invision Power Top Site List SQL Injection Vulnerability mailing-listx_transferred
- exchange.xforce.ibmcloud.com: invision-id-sql-injection(15568) vdb-entryx_transferred
- securitytracker.com: 1009511 vdb-entryx_transferred
- secunia.com: 11187 third-party-advisoryx_transferred
- securityfocus.com: 9945 vdb-entryx_transferred