RSS   Vulnerabilities for 'Direct news'   RSS

2005-12-27
 
CVE-2005-4527

 

 
Multiple SQL injection vulnerabilities in Direct News 4.9 allow remote attackers to execute arbitrary SQL commands via (1) the setLang parameter in index.php and (2) unspecified search module parameters.

 


Copyright 2024, cxsecurity.com

 

Back to Top