Vulnerabilities > CVE-2005-4664 - Unspecified vulnerability in Ocomon 1.21
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN ocomon
exploit available
Summary
SQL injection vulnerability in OcoMon 1.21, and possibly other versions, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the logon page, a different vulnerability than CVE-2005-4662.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| id | EDB-ID:40285 |
| last seen | 2018-11-30 |
| modified | 2016-08-22 |
| published | 2016-08-22 |
| reporter | Exploit-DB |
| source | https://www.exploit-db.com/download/40285 |
| title | Ocomon 2.0 - SQL Injection |
References
- http://secunia.com/advisories/17470
- http://secunia.com/advisories/17470
- http://sourceforge.net/project/showfiles.php?group_id=45554
- http://sourceforge.net/project/showfiles.php?group_id=45554
- http://www.osvdb.org/20751
- http://www.osvdb.org/20751
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23085
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23085