Vulnerabilities

CVE-2009-2451

by Fred · 14/07/2009

Multiple SQL injection vulnerabilities in index.php in MIM:InfiniX 1.2.003 and possibly earlier versions allow remote attackers to execute arbitrary SQL commands via the (1) month and (2) year parameters in a calendar action, or (3) a search term in the search form.

Date published : 2009-07-14

http://www.securityfocus.com/bid/34750

http://www.securityfocus.com/archive/1/503046/100/0/threaded

Similar

Tags: Cybersecurity Alert