CVE-2005-0946

SQL injection vulnerability in phpCoin 1.2.1b and earlier allows remote attackers to execute arbitrary SQL commands via the (1) term/keywords field on the search page, (2) username or (3) e-mail field on the forgot password page, or (4) domain name on the ordering new package page.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:coinsoft_technologies:phpcoin:1.2:*:*:*:*:*:*:*
cpe:2.3:a:coinsoft_technologies:phpcoin:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:coinsoft_technologies:phpcoin:1.2.1b:*:*:*:*:*:*:*

History

No history.

Information

Published : 2005-03-29 05:00

Updated : 2024-02-28 10:42


NVD link : CVE-2005-0946

Mitre link : CVE-2005-0946

CVE.ORG link : CVE-2005-0946


JSON object : View

Products Affected

coinsoft_technologies

  • phpcoin