Multiple SQL injection vulnerabilities in Loki download manager 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) password field to default.asp or (2) cat parameter to catinfo.asp.
References
Configurations
History
20 Nov 2024, 23:58
Type | Values Removed | Values Added |
---|---|---|
References | () http://marc.info/?l=bugtraq&m=111826992711703&w=2 - | |
References | () http://secunia.com/advisories/15633 - | |
References | () http://securitytracker.com/id?1014147 - | |
References | () http://www.securityfocus.com/bid/13898 - | |
References | () http://www.securityfocus.com/bid/13900 - |
Information
Published : 2005-06-08 04:00
Updated : 2025-04-03 01:03
NVD link : CVE-2005-1943
Mitre link : CVE-2005-1943
CVE.ORG link : CVE-2005-1943
JSON object : View
Products Affected
loki
- loki_download_manager_catgory_version
CWE