Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:14065
HistoryAug 28, 2006 - 12:00 a.m.

[Full-disclosure] [vuln.sg] Cybozu Garoon 2 SQL Injection Vulnerabilities

2006-08-2800:00:00
vulners.com
17
JSON

[vuln.sg] Vulnerability Research Advisory

Cybozu Garoon 2 SQL Injection Vulnerabilities

by Tan Chew Keong
Release Date: 2006-08-28

Summary

Some SQL injection vulnerabilities have been found in Cybozu Garoon 2.
When exploited by a logon user, the vulnerabilities allow manipulation
of SQL statements which can lead to disclosure of information from the
database, or to cause the backend MySQL database to consume large amount
of CPU resources.

Tested Versions

Cybuzu Garoon 2 Version 2.1.0 for Windows

Details

http://vuln.sg/cybozugaroon-en.html
http://vuln.sg/cybozugaroon-jp.html

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

JSON