CVE-2005-4527

2005-12-27T20:03:00
ID CVE-2005-4527
Type cve
Reporter NVD
Modified 2017-07-19T21:29:17

Description

Multiple SQL injection vulnerabilities in Direct News 4.9 allow remote attackers to execute arbitrary SQL commands via (1) the setLang parameter in index.php and (2) unspecified search module parameters.