CVE-2001-0201

The Postaci frontend for PostgreSQL does not properly filter characters such as semicolons, which could allow remote attackers to execute arbitrary SQL queries via the deletecontact.php program.

Date published : 2001-03-09

http://www.securityfocus.com/bid/2230

http://archives.neohapsis.com/archives/bugtraq/2001-01/0287.html