Required CVE Record Information
Description
NewsDaemon before 0.21b allows remote attackers to execute arbitrary SQL queries and gain privileges via a malformed user_username parameter.
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 3 Total
- archives.neohapsis.com: 20010126 NewsDaemon remote administrator access mailing-listx_transferred
- http://sourceforge.net/forum/forum.php?forum_id=60570 x_transferred
- exchange.xforce.ibmcloud.com: newsdaemon-gain-admin-access(6010) vdb-entryx_transferred