NuytsTech Security

CVE-2010-4784

by ·

Multiple SQL injection vulnerabilities in member.php in PHP Web Scripts Easy Banner Free 2009.05.18, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.

Date published : 2011-04-07

http://www.securityfocus.com/bid/45066

http://www.securityfocus.com/archive/1/514908/100/0/threaded

Tags: