Description
Multiple SQL injection vulnerabilities in cherche.php in PHPMyRing 4.2.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) limite and (2) mots parameters.
Exploits (1)
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/29887
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/2679
Exploit, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/22620
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/4261
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/20792
Scores
EPSS
0.0113
EPSS Percentile
78.4%
Details
Status
published
Products (2)
phpmyring/phpmyring
4.2
phpmyring/phpmyring
< 4.2.1
Published
Nov 01, 2006
Tracked Since
Feb 18, 2026