CVE-2010-1093

2010-03-24T22:44:00
ID CVE-2010-1093
Type cve
Reporter cve@mitre.org
Modified 2010-12-14T14:34:00

Description

SQL injection vulnerability in rss.php in 1024 CMS 2.1.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter in a vp action.