CVE-2013-6164

SQL injection vulnerability in view/objectDetail.php in Project’Or RIA 3.4.0 allows remote attackers to execute arbitrary SQL commands via the objectId parameter.

Date published : 2013-11-14

http://www.securityfocus.com/bid/63538

http://archives.neohapsis.com/archives/bugtraq/2013-11/0020.html