Multiple SQL injection vulnerabilities in All In One Control Panel (AIOCP) 1.3.010 and earlier, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) xuser_name parameter to shared/code/cp_authorization.php, and the (2) did parameter to public/code/cp_downloads.php, different vectors than CVE-2007-0223.
References
Configurations
History
No history.
Information
Published : 2007-01-18 00:28
Updated : 2024-02-28 11:01
NVD link : CVE-2007-0316
Mitre link : CVE-2007-0316
CVE.ORG link : CVE-2007-0316
JSON object : View
Products Affected
all_in_one_control_panel
- all_in_one_control_panel
CWE