MidnightBSD

Advisories for ilch.de

CVE-2006-0850 HIGH

SQL injection vulnerability in include/includes/user/login.php in ilchClan before 1.05g allows remote attackers to execute arbitrary SQL commands via the login_name parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
ilch.de ilchclan 1.0.4
ilch.de ilchclan 1.0.1
ilch.de ilchclan 1.0.0
ilch.de ilchclan 1.0.3
ilch.de ilchclan 1.0.2
ilch.de ilchclan 0.0.1
CVE-2006-0851 HIGH

SQL injection vulnerability in the forum module of ilchClan 1.05g and earlier allows remote attackers to execute arbitrary SQL commands via the pid parameter, when creating a newpost.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
ilch.de ilchclan 1.0.4
ilch.de ilchclan 1.0.1
ilch.de ilchclan 1.0.0
ilch.de ilchclan 1.0.3
ilch.de ilchclan 1.0.2
ilch.de ilchclan 0.0.1