Vulnerabilities > Jportal > Jportal WEB Portal > 2.3.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-11-06 | CVE-2005-3509 | SQL Injection vulnerability in Jportal web Portal 2.2.1/2.3.1 Multiple SQL injection vulnerabilities in JPortal allow remote attackers to execute arbitrary SQL commands via (1) banner.php or the id parameter to (2) print.php, (3) comment.php, and (4) news.php. | 7.5 |
2005-09-24 | CVE-2005-3052 | SQL-Injection vulnerability in jportal SQL injection vulnerability in module/down.inc.php in jportal 2.3.1 allows remote attackers to execute arbitrary SQL commands via the search field to download.php. | 7.5 |
2005-04-12 | CVE-2005-1071 | SQL injection vulnerability in banner.inc.php in JPortal Web Portal 2.3.1 allows remote attackers to execute arbitrary SQL commands via the haslo parameter. | 7.5 |