Vulnerabilities > CVE-2002-1457 - Unspecified vulnerability in Leszek Krupinski L-Forum 2.4.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN leszek-krupinski
exploit available
Summary
SQL injection vulnerability in search.php for L-Forum 2.40 allows remote attackers to execute arbitrary SQL statements via the search parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Leszek Krupinski L-Forum 2.4 Search Script SQL Injection Vulnerability. CVE-2002-1457. Webapps exploit for php platform |
| id | EDB-ID:21708 |
| last seen | 2016-02-02 |
| modified | 2002-08-14 |
| published | 2002-08-14 |
| reporter | Matthew Murphy |
| source | https://www.exploit-db.com/download/21708/ |
| title | Leszek Krupinski L-Forum 2.4 - Search Script SQL Injection Vulnerability |
References
- http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0074.html
- http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0074.html
- http://www.iss.net/security_center/static/9837.php
- http://www.iss.net/security_center/static/9837.php
- http://www.securityfocus.com/bid/5468
- http://www.securityfocus.com/bid/5468