CVE-2005-0410

SQL injection vulnerability in importcc.php for CitrusDB 0.3.6 and earlier allows remote attackers to inject data via the fields of a CSV file.

Date published : 2005-02-16

http://lists.grok.org.uk/pipermail/full-disclosure/2005-February/031709.html

http://www.redteam-pentesting.de/advisories/rt-sa-2005-004.txt