NuytsTech Security

CVE-2012-5297

by ·

SQL injection vulnerability in edit.asp in Mavili Guestbook, as released in November 2007, allows remote attackers to execute arbitrary SQL commands via the id parameter.

Date published : 2012-10-04

http://www.securityfocus.com/bid/51252

http://archives.neohapsis.com/archives/bugtraq/2012-01/0010.html

Tags: