mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 09:12:08 +00:00
920 B
920 B
CVE-2013-2226
Description
Multiple SQL injection vulnerabilities in GLPI before 0.83.9 allow remote attackers to execute arbitrary SQL commands via the (1) users_id_assign parameter to ajax/ticketassigninformation.php, (2) filename parameter to front/document.form.php, or (3) table parameter to ajax/comments.php.
POC
Reference
- http://www.securityfocus.com/bid/60693
- http://www.securityfocus.com/bid/60693
- http://www.zeroscience.mk/en/vulnerabilities/ZSL-2013-5146.php
- http://www.zeroscience.mk/en/vulnerabilities/ZSL-2013-5146.php
Github
No PoCs found on GitHub currently.