Vulnerabilities

CVE-2006-1234

by Fred · 14/03/2006

SQL injection vulnerability in index.php in DSCounter 1.2, with magic_quotes_gpc disabled, allows remote attackers to execute arbitrary SQL commands via the X-Forwarded-For field (HTTP_X_FORWARDED_FOR environment variable) in an HTTP header.

Date published : 2006-03-14

http://www.securityfocus.com/bid/17112

http://www.securityfocus.com/archive/1/428807/100/0/threaded

Similar

Tags: Cybersecurity Alert

CVE-2006-1234

Similar

Recent Posts

Categories

CVE-2006-1234

Share this:

Similar

Recent Posts

Categories

Tags