Vulnerabilities

CVE-2010-2012

by Fred · 24/05/2010

SQL injection vulnerability in function.php in MigasCMS 1.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the categorie parameter in a catalogo action. NOTE: some of these details are obtained from third party information.

Date published : 2010-05-24

http://www.securityfocus.com/bid/40256

http://packetstormsecurity.org/1005-exploits/migascms-sql.txt

Similar

Tags: Cybersecurity Alert