SQL Injection Vulnerability in CopperExport 0.2.1: Remote Code Execution via xp_publish.php

SQL Injection Vulnerability in CopperExport 0.2.1: Remote Code Execution via xp_publish.php

CVE-2005-0697 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in the process_picture function xp_publish.php in CopperExport 0.2.1 allows remote attackers to execute arbitrary SQL commands, possibly via the (1) title, (2) caption, or (3) keywords parameters.

Learn more about our Web Application Penetration Testing UK.