PT-2005-4901 · Phpcoin · Phpcoin

Published

2005-12-14

Updated

2018-10-19

CVE-2005-4213

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions phpCOIN version 1.2.2

Description The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the SQL injection vulnerability in the mod.php file via the phpcoinsessid cookie.

Recommendations For phpCOIN version 1.2.2, update to a version that fixes the SQL injection vulnerability in mod.php to prevent remote attackers from executing arbitrary SQL commands.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-4213

Affected Products

Phpcoin

PT-2005-4901 · Phpcoin · Phpcoin

CVE-2005-4213

Related Identifiers

Affected Products

References · 11