Vulnerabilities > CVE-2002-1457 - SQL Injection vulnerability in Leszek Krupinski L-Forum 2.4.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
SQL injection vulnerability in search.php for L-Forum 2.40 allows remote attackers to execute arbitrary SQL statements via the search parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Leszek Krupinski L-Forum 2.4 Search Script SQL Injection Vulnerability. CVE-2002-1457. Webapps exploit for php platform |
id | EDB-ID:21708 |
last seen | 2016-02-02 |
modified | 2002-08-14 |
published | 2002-08-14 |
reporter | Matthew Murphy |
source | https://www.exploit-db.com/download/21708/ |
title | Leszek Krupinski L-Forum 2.4 - Search Script SQL Injection Vulnerability |