CVE-2010-1923

SQL injection vulnerability in user.php in Hi Web Wiesbaden Web 2.0 Social Network Freunde Community System allows remote attackers to execute arbitrary SQL commands via the id parameter in a showgallery action.
Configurations

Configuration 1 (hide)

cpe:2.3:a:phpscripte24:web_social_network_freunde_community:2.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2010-05-12 16:07

Updated : 2024-02-28 11:41


NVD link : CVE-2010-1923

Mitre link : CVE-2010-1923

CVE.ORG link : CVE-2010-1923


JSON object : View

Products Affected

phpscripte24

  • web_social_network_freunde_community
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')