CVE: Common Vulnerabilities and Exposures

Required CVE Record Information

Description

Multiple SQL injection vulnerabilities in Walter Beschmout PhpQuiz 1.2 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the univers parameter in score.php and (2) the quiz_id parameter in home.php, accessed through the front/ URI.

Product Status

Learn more

Information not provided

References 8 Total

exploit-db.com: 2376
external site
exploit
vupen.com: ADV-2006-3693
external site
vdb-entry
http://www.morx.org/phpquiz.txt
external site
securityreason.com: 1627
external site
third-party-advisory
secunia.com: 22015
external site
third-party-advisory
exchange.xforce.ibmcloud.com: phpquiz-score-sql-injection(28993)
external site
vdb-entry
securityfocus.com: 20065
external site
vdb-entry
securityfocus.com: 20060916 PHPQuiz Multiple Remote Vulnerabilites
external site
mailing-list

Updated: 2024-08-07

This container includes required additional information provided by the CVE Program for this vulnerability.

References 8 Total

exploit-db.com: 2376
external site
exploitx_transferred
vupen.com: ADV-2006-3693
external site
vdb-entryx_transferred
http://www.morx.org/phpquiz.txt
external site
x_transferred
securityreason.com: 1627
external site
third-party-advisoryx_transferred
secunia.com: 22015
external site
third-party-advisoryx_transferred
exchange.xforce.ibmcloud.com: phpquiz-score-sql-injection(28993)
external site
vdb-entryx_transferred
securityfocus.com: 20065
external site
vdb-entryx_transferred
securityfocus.com: 20060916 PHPQuiz Multiple Remote Vulnerabilites
external site
mailing-listx_transferred

Common vulnerabilities and Exposures (CVE)

Required CVE Record Information

CNA: MITRE Corporation

Description

Product Status

References 8 Total

CVE Program

References 8 Total