This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Ryan Haudenschilt First view 2010-04-22
Product Family Connections Last view 2010-04-22
Version Type
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:ryan_haudenschilt:family_connections:1.7:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:0.5:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:0.6:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:0.9.9:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.0:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.1:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.5:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.6:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.7.2:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.7.3:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:0.1.1:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:0.1.2:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:0.9.5:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:0.9.8:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.3.1:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.4:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.6.4:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.7.1:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:0.8:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:0.9:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.1.1:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.1.2:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.6.1:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.6.2:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.7.4:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.8:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:0.9.1:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:0.9.2:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.2:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.3:*:*:*:*:*:*:* 1
cpe:2.3:a:ryan_haudenschilt:family_connections:1.6.3:*:*:*:*:*:*:* 1

Related : CVE

  Date Alert Description
7.5 2010-04-22 CVE-2009-4791

Multiple SQL injection vulnerabilities in Family Connections (aka FCMS) before 1.8.2 allow remote attackers to execute arbitrary SQL commands via the (1) letter parameter to addressbook.php, (2) id parameter to recipes.php, (3) year parameter to register.php, (4) poll_id parameter to home.php, and (5) email parameter to lostpw.php.

CWE : Common Weakness Enumeration

%idName
100% (1) CWE-89 Improper Sanitization of Special Elements used in an SQL Command ('...

Open Source Vulnerability Database (OSVDB)

id Description
53144 Family Connections lostpw.php email Parameter SQL Injection
53143 Family Connections register.php year Parameter SQL Injection
53142 Family Connections home.php poll_id Parameter SQL Injection
53141 Family Connections recipes.php id Parameter SQL Injection
53140 Family Connections addressbook.php letter Parameter SQL Injection