Required CVE Record Information
Description
Multiple SQL injection vulnerabilities in index.php in NeLogic Nephp Publisher 4.5.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id and (2) nnet_catid parameters.
References 3 Total
- osvdb.org: 21196 vdb-entry
- http://pridels0.blogspot.com/2005/11/nephp-publisher-v45x-sql-inj-vuln.html
- secunia.com: 17772 third-party-advisory
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 3 Total
- osvdb.org: 21196 vdb-entryx_transferred
- http://pridels0.blogspot.com/2005/11/nephp-publisher-v45x-sql-inj-vuln.html x_transferred
- secunia.com: 17772 third-party-advisoryx_transferred