NuytsTech Security

CVE-2006-7150

by ·

Multiple SQL injection vulnerabilities in Mambo 4.6.x allow remote attackers to execute arbitrary SQL commands via the mcname parameter to (1) moscomment.php and (2) com_comment.php.

Date published : 2007-03-07

http://www.securityfocus.com/bid/20650

http://www.securityfocus.com/archive/1/449305/100/0/threaded

Tags: