SQL Injection Vulnerabilities in PHP Address Book by PHP Address Book
CVE-2013-0135

Currently unrated

Key Information:

Vendor

Chatelao

Status
PHP Address Book
Vendor
CVE Published:
9 April 2013

What is CVE-2013-0135?

Multiple SQL injection vulnerabilities in PHP Address Book 8.2.5 permit remote attackers to execute arbitrary SQL commands by manipulating various parameters within the application. Specific attack vectors include the id, email, username, and several other fields across various scripts such as delete_user.php, edit_user.php, and reset_password.php, allowing unauthorized database access or manipulation.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.kb.cert.org/vuls/id/183692
third-party-advisoryx_refsource_CERT-VN
https://exchange.xforce.ibmcloud.com/vulnerabilities/99623
vdb-entryx_refsource_XF
http://www.acadion.nl/labs/advisory/20130203-phpaddressbo...
x_refsource_MISC

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.