CVE-2008-3129

2008-07-10T23:41:00
ID CVE-2008-3129
Type cve
Reporter cve@mitre.org
Modified 2018-10-30T17:29:00

Description

Multiple SQL injection vulnerabilities in index.php in Catviz 0.4 beta 1 allow remote attackers to execute arbitrary SQL commands via the (1) foreign_key_value parameter in the news page and (2) webpage parameter in the webpage_multi_edit form.