CVE-2006-6157

2006-11-28T23:28:00
ID CVE-2006-6157
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T21:46:00

Description

SQL injection vulnerability in index.php in ContentNow 1.39 and earlier allows remote attackers to execute arbitrary SQL commands via the pageid parameter. NOTE: this issue can be leveraged for path disclosure with an invalid pageid parameter.