Required CVE Record Information
Description
SQL injection vulnerability in count.php in Skull-Splitter PHP Downloadcounter for Wallpapers 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) count_fieldname, (2) url_fieldname, or (3) url parameter.
References 8 Total
- secunia.com: 19314 third-party-advisory
- securityreason.com: 649 third-party-advisory
- exchange.xforce.ibmcloud.com: downloadcounter-count-sql-injection(25316) vdb-entry
- securityfocus.com: 17156 vdb-entry
- securityfocus.com: 20060329 [eVuln] Skull-Splitter's PHP Downloadcounter for Wallpapers SQL Injection mailing-list
- http://evuln.com/vulns/105/summary.html
- osvdb.org: 23972 vdb-entry
- vupen.com: ADV-2006-1004 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 8 Total
- secunia.com: 19314 third-party-advisoryx_transferred
- securityreason.com: 649 third-party-advisoryx_transferred
- exchange.xforce.ibmcloud.com: downloadcounter-count-sql-injection(25316) vdb-entryx_transferred
- securityfocus.com: 17156 vdb-entryx_transferred
- securityfocus.com: 20060329 [eVuln] Skull-Splitter's PHP Downloadcounter for Wallpapers SQL Injection mailing-listx_transferred
- http://evuln.com/vulns/105/summary.html x_transferred
- osvdb.org: 23972 vdb-entryx_transferred
- vupen.com: ADV-2006-1004 vdb-entryx_transferred