RSS   Vulnerabilities for 'Autotutorials'   RSS

2008-04-18
 
CVE-2008-1889

CWE-89
 

 
SQL injection vulnerability in viewcat.php in XplodPHP AutoTutorials 2.1 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter.

 


Copyright 2017, cxsecurity.com