Vulnerabilities > CVE-2005-2432 - Unspecified vulnerability in Tincan PHPlist
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN tincan
exploit available
Summary
SQL injection vulnerability in PhpList allows remote attackers to modify SQL statements via the id argument to admin pages such as (1) members or (2) admin.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | PHPList 2.8.12 Admin Page SQL Injection Vulnerability. CVE-2005-2432. Webapps exploit for php platform |
| id | EDB-ID:26045 |
| last seen | 2016-02-03 |
| modified | 2005-07-28 |
| published | 2005-07-28 |
| reporter | tgo |
| source | https://www.exploit-db.com/download/26045/ |
| title | PHPList 2.8.12 Admin Page SQL Injection Vulnerability |
References
- http://marc.info/?l=bugtraq&m=112258115325054&w=2
- http://marc.info/?l=bugtraq&m=112258115325054&w=2
- http://marc.info/?l=bugtraq&m=112291396731712&w=2
- http://marc.info/?l=bugtraq&m=112291396731712&w=2
- http://secunia.com/advisories/16274
- http://secunia.com/advisories/16274
- http://securitytracker.com/id?1014607
- http://securitytracker.com/id?1014607
- http://www.osvdb.org/18316
- http://www.osvdb.org/18316
- http://www.securityfocus.com/bid/14403
- http://www.securityfocus.com/bid/14403
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21576
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21576