RSS   Vulnerabilities for 'Mobius web publishing software'   RSS

2008-07-31
 
CVE-2008-3420

CWE-89
 

 
Multiple SQL injection vulnerabilities in Mobius for Mimsy XG 1 1.4.4.1 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to browse.php or (2) the s parameter in an exhibitions action to detail.php.

 

 >>> Vendor: Willo 2 Products
TRIO
Mobius web publishing software


Copyright 2024, cxsecurity.com

 

Back to Top