SQL Injection Vulnerability in phpCoin 1.2.1b and Earlier: Remote Code Execution

SQL Injection Vulnerability in phpCoin 1.2.1b and Earlier: Remote Code Execution

CVE-2005-0946 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in phpCoin 1.2.1b and earlier allows remote attackers to execute arbitrary SQL commands via the (1) term/keywords field on the search page, (2) username or (3) e-mail field on the forgot password page, or (4) domain name on the ordering new package page.

Learn more about our User Device Pen Test.