Lucene search
RedhatCVELIST:CVE-2012-2740HistorySep 06, 2012 - 5:00 p.m.
CVE-2012-2740
2012-09-0617:00:00
redhat
www.cve.org
3
php
sql injection
vulnerability
remote attackers
SQL injection vulnerability in public_html/lists/admin in phpList before 2.10.18 allows remote attackers to execute arbitrary SQL commands via the sortby parameter in a find action.
References
securitytracker.com/id?1027181
www.exploit-db.com/exploits/18639
www.openwall.com/lists/oss-security/2012/06/16/1
www.openwall.com/lists/oss-security/2012/06/17/2
www.securityfocus.com/bid/52657
www.zeroscience.mk/en/vulnerabilities/ZSL-2012-5081.php
mantis.phplist.com/view.php?id=16557
www.phplist.com/?lid=567
Related
cve
cve
CVE-2012-2740
2012-09-06 17:55:01
prion
prion
Sql injection
2012-09-06 17:55:00
nvd
nvd
CVE-2012-2740
2012-09-06 17:55:01
exploitdb
exploitdb
phpList 2.10.17 - SQL Injection / Cross-Site Scripting
2012-03-21 00:00:00
openvas
openvas
FreeBSD Ports: phplist
2012-08-10 00:00:00
FreeBSD Ports: phplist
2012-08-10 00:00:00
nessus
nessus
zeroscience
zeroscience
phpList 2.10.17 Remote SQL Injection and XSS Vulnerability
2012-03-21 00:00:00
freebsd
freebsd
phpList -- SQL injection and XSS vulnerability
2012-03-21 00:00:00