Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Unknown

CVE-2008-6330

Disclosure Date: February 27, 2009 (last updated October 04, 2023)
SQL injection vulnerability in index.php in MyTopix 1.3.0 and earlier allows remote authenticated users to execute arbitrary SQL commands via the send parameter in a notes action.
0
0
Attacker Value
Unknown

CVE-2006-0588

Disclosure Date: February 08, 2006 (last updated February 22, 2025)
SQL injection vulnerability in search.php in MyTopix 1.2.3 allows remote attackers to execute arbitrary SQL commands via the (1) mid and (2) keywords parameters.
0
0
Attacker Value
Unknown

CVE-2006-0590

Disclosure Date: February 08, 2006 (last updated February 22, 2025)
MyTopix 1.2.3 allows remote attackers to obtain the installation path via an invalid hl parameter to index.php, which leads to path disclosure, possibly related to invalid SQL syntax.
0
0
Attacker Value
Unknown

CVE-2006-0589

Disclosure Date: February 08, 2006 (last updated February 22, 2025)
MyTopix 1.2.3 allows remote attackers to obtain the installation path via a direct request to logon.mod.php, which leaks the path in an error message.
0
0