RSS   Vulnerabilities for 'Catviz'   RSS

2008-07-10
 
CVE-2008-3129

CWE-89
 

 
Multiple SQL injection vulnerabilities in index.php in Catviz 0.4 beta 1 allow remote attackers to execute arbitrary SQL commands via the (1) foreign_key_value parameter in the news page and (2) webpage parameter in the webpage_multi_edit form.

 


Copyright 2024, cxsecurity.com

 

Back to Top