Vulnerabilities > CVE-2002-0963 - Unspecified vulnerability in Geeklog 1.3/1.3.0/1.3.5
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
SQL injection vulnerability in comment.php for GeekLog 1.3.5 and earlier allows remote attackers to obtain sensitive user information via the pid parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0058.html
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0058.html
- http://geeklog.sourceforge.net/article.php?story=20020610013358149
- http://geeklog.sourceforge.net/article.php?story=20020610013358149
- http://www.iss.net/security_center/static/9311.php
- http://www.iss.net/security_center/static/9311.php
- http://www.securityfocus.com/bid/4968
- http://www.securityfocus.com/bid/4968