| |
Vulnerability CVE-2008-6049
Published: 2009-02-04 Modified: 2012-02-12
| Description: |
** REJECT ** SQL injection vulnerability in index.php in TinyMCE 2.0.1 allows remote attackers to execute arbitrary SQL commands via the menuID parameter. NOTE: CVE and multiple reliable third parties dispute this issue, since TinyMCE does not contain index.php or any PHP code. This may be an issue in a product that has integrated TinyMCE. |
See advisories in our WLB2 database: | Topic | Author | Date |
High |
| AnGeL25dZ | 06.02.2009 |
Type:
CWE-89 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))
|
|
Copyright 2024, cxsecurity.com
|
|
|
