PT-2010-3274 · Nct · Nct Jobs Portal Script
Sid3^Effects
·
Publicado
2010-04-29
·
Atualizado
2017-08-17
·
CVE-2010-1604
CVSS v2.0
6.8
Média
| Vetor | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
NCT Jobs Portal Script (affected versions not specified)
Description
The issue concerns SQL injection vulnerabilities in the admin login.php file. These vulnerabilities allow remote attackers to execute arbitrary SQL commands. The vulnerable parameters are the
user parameter (also known as the login field) and the passwd parameter (also known as the password field).Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
SQL injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Nct Jobs Portal Script