← back
CVE-2005-4286

CVE-2005-4286

EPSS 1.2%
Unspecified vulnerability in PhpLogCon before 1.2.2 allows remote attackers to use arbitrary profiles via unknown vectors involving "'smart' values for userid and password," probably involving an SQL injection vulnerability in the (1) pass and (2) usr parameters in submit.php.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://cvs.sourceforge.net/viewcvs.py/phplogcon/phplogcon/submit.php?r1=1.4&r2=1.5http://secunia.com/advisories/18053http://www.phplogcon.com/Article9.phtmlhttp://www.vupen.com/english/advisories/2005/2930