Vulnerabilities > CVE-2004-2218 - Unspecified vulnerability in PHPmywebhosting
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
SQL injection vulnerability in pmwh.php in PHPMyWebHosting 0.3.4 and earlier allows remote attackers to modify SQL statements via the password parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | phpMyWebhosting SQL Injection Exploit. CVE-2004-2218. Webapps exploit for php platform |
id | EDB-ID:406 |
last seen | 2016-01-31 |
modified | 2004-08-20 |
published | 2004-08-20 |
reporter | Noam Rathaus |
source | https://www.exploit-db.com/download/406/ |
title | phpMyWebhosting SQL Injection Exploit |
Nessus
NASL family | CGI abuses |
NASL id | PHPMYWEBHOSTING_SQL_INJECTION.NASL |
description | The remote host is running PHPMyWebHosting, a web hosting management interface written in PHP. The remote version of this software does not perform a proper validation of user-supplied input and is, therefore, vulnerable to a SQL injection attack. An attacker may execute arbitrary SQL statements against the remote database by sending a malformed username containing SQL escape characters when logging into the remote interface in |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 16208 |
published | 2005-01-19 |
reporter | This script is Copyright (C) 2005-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/16208 |
title | phpMyWebHosting Authentication SQL Injection |
code |
|
References
- http://archives.neohapsis.com/archives/bugtraq/2004-08/0207.html
- http://archives.neohapsis.com/archives/bugtraq/2004-08/0207.html
- http://archives.neohapsis.com/archives/bugtraq/2004-09/0247.html
- http://archives.neohapsis.com/archives/bugtraq/2004-09/0247.html
- http://www.osvdb.org/8976
- http://www.osvdb.org/8976
- http://www.securityfocus.com/bid/10942
- http://www.securityfocus.com/bid/10942
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17005
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17005