Description
SQL injection vulnerability in ts.exe (aka ts.cgi) in Walla TeleSite 3.0 and earlier allows remote attackers to inject arbitrary SQL commands via the sug parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Rafi Nahum · textwebappscgi
https://www.exploit-db.com/exploits/26508
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/416581/30/0/threaded
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1015204
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/20883
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/15419
Scores
EPSS
0.0081
EPSS Percentile
74.3%
Details
Status
published
Products (1)
walla_telesite/walla_telesite
< 3.0
Published
Nov 16, 2005
Tracked Since
Feb 18, 2026