NuytsTech Security

CVE-2006-4323

by ·

SQL injection vulnerability in list.php in CityForFree indexcity 1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the cate_id parameter.

Date published : 2006-08-23

http://www.securityfocus.com/bid/19653

http://www.securityfocus.com/archive/1/445907/100/0/threaded

Tags: