Required CVE Record Information
Description
SQL injection vulnerability in announcements.php in SiteEngine 5.x allows remote attackers to execute arbitrary SQL commands via the id parameter.
References 4 Total
- exploit-db.com: 6823 exploit
- secunia.com: 32404 third-party-advisory
- securityfocus.com: 20081023 SiteEngine 5.x Multiple Remote Vulnerabilities mailing-list
- securityfocus.com: 31889 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 4 Total
- exploit-db.com: 6823 exploitx_transferred
- secunia.com: 32404 third-party-advisoryx_transferred
- securityfocus.com: 20081023 SiteEngine 5.x Multiple Remote Vulnerabilities mailing-listx_transferred
- securityfocus.com: 31889 vdb-entryx_transferred