CVE-2014-4852

SQL injection vulnerability in admin/uploads.php in The Digital Craft AtomCMS, possibly 2.0, allows remote attackers to execute arbitrary SQL commands via the id parameter.

Date published : 2014-07-10

http://www.securityfocus.com/bid/68437

http://packetstormsecurity.com/files/127371/Atom-CMS-Shell-Upload-SQL-Injection.html