Required CVE Record Information
Description
Multiple SQL injection vulnerabilities in class.php in Professional Home Page Tools Guestbook allow remote attackers to execute arbitrary SQL commands via the (1) hidemail, (2) name, (3) mail, (4) ip, or (5) text parameters.
References 8 Total
- http://artemis.abenteuer-mittelerde.de/pub/adv02-phptgb.txt
- securityreason.com: 1248 third-party-advisory
- securityfocus.com: 20060717 Professional PHP Tools Guestbook Multiple Vulnerabilities mailing-list
- exchange.xforce.ibmcloud.com: phptguestbook-class-sql-injection(27774) vdb-entry
- secunia.com: 21102 third-party-advisory
- securityfocus.com: 19019 vdb-entry
- vupen.com: ADV-2006-2876 vdb-entry
- securitytracker.com: 1016550 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 8 Total
- http://artemis.abenteuer-mittelerde.de/pub/adv02-phptgb.txt x_transferred
- securityreason.com: 1248 third-party-advisoryx_transferred
- securityfocus.com: 20060717 Professional PHP Tools Guestbook Multiple Vulnerabilities mailing-listx_transferred
- exchange.xforce.ibmcloud.com: phptguestbook-class-sql-injection(27774) vdb-entryx_transferred
- secunia.com: 21102 third-party-advisoryx_transferred
- securityfocus.com: 19019 vdb-entryx_transferred
- vupen.com: ADV-2006-2876 vdb-entryx_transferred
- securitytracker.com: 1016550 vdb-entryx_transferred