CVE-2009-2881

2009-08-20T17:30:00
ID CVE-2009-2881
Type cve
Reporter cve@mitre.org
Modified 2017-09-19T01:29:00

Description

Multiple SQL injection vulnerabilities in Basilic 1.5.13 allow remote attackers to execute arbitrary SQL commands via the idAuthor parameter to (1) index.php and possibly (2) allpubs.php in publications/.