Multiple SQL injection vulnerabilities in form.php in JBook 1.4 allow remote attackers to execute arbitrary SQL commands via the (1) nom or (2) mail parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Link | Tags |
---|---|
http://secunia.com/advisories/19613 | third party advisory vendor advisory |
http://www.vupen.com/english/advisories/2006/1315 | vdb entry |
http://www.securityfocus.com/bid/17458 | vdb entry |
https://exchange.xforce.ibmcloud.com/vulnerabilities/25735 | vdb entry |