IDCVSSSummaryLast (major) updatePublished
CVE-2008-0371 6.8
Multiple SQL injection vulnerabilities in aliTalk 1.9.1.1, when magic_quotes_gpc is disabled, allow remote authenticated users to execute arbitrary SQL commands via (1) the mohit parameter to (a) inc/receivertwo.php; and allow remote attackers to exe
29-09-2017 - 01:30 22-01-2008 - 20:00
CVE-2008-0391 7.5
inc/elementz.php in aliTalk 1.9.1.1 does not properly verify authentication, which allows remote attackers to add an arbitrary user account via a modified lilil parameter, in conjunction with the ubild and pa parameters.
29-09-2017 - 01:30 23-01-2008 - 02:00
Back to Top Mark selected
Back to Top