CVE-2006-0199

SQL injection vulnerability in news.asp in Mini-Nuke CMS System 1.8.2 and earlier allows remote attackers to execute arbitrary SQL commands via the hid parameter.

Date published : 2006-01-13

http://www.securityfocus.com/archive/1/421727/100/0/threaded

http://archives.neohapsis.com/archives/fulldisclosure/2006-01/0439.html