CVE-2010-3212

2010-09-03T18:00:00
ID CVE-2010-3212
Type cve
Reporter cve@mitre.org
Modified 2017-08-17T01:32:00

Description

SQL injection vulnerability in index.php in Seagull 0.6.7 and earlier allows remote attackers to execute arbitrary SQL commands via the frmQuestion parameter in a retrieve action, in conjunction with a user/password PATH_INFO.