CVE-2002-2277

SQL injection vulnerability in mod_search/index.php in PortailPHP 0.99 allows remote attackers to execute arbitrary SQL commands via the (1) $rech, (2) $BD_Tab_docs, (3) $BD_Tab_file, (4) $BD_Tab_liens, (5) $BD_Tab_faq, or (6) $chemin variables.
Configurations

Configuration 1 (hide)

cpe:2.3:a:portail_web_php:portail_web_php:0.99:*:*:*:*:*:*:*

History

20 Nov 2024, 23:43

Type Values Removed Values Added
References () http://archives.neohapsis.com/archives/bugtraq/2002-11/0359.html - Patch () http://archives.neohapsis.com/archives/bugtraq/2002-11/0359.html - Patch
References () http://www.securityfocus.com/bid/6273 - () http://www.securityfocus.com/bid/6273 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/10735 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/10735 -

Information

Published : 2002-12-31 05:00

Updated : 2024-11-20 23:43


NVD link : CVE-2002-2277

Mitre link : CVE-2002-2277

CVE.ORG link : CVE-2002-2277


JSON object : View

Products Affected

portail_web_php

  • portail_web_php
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')