CVE-2011-1055

2011-02-21T14:00:02
ID CVE-2011-1055
Type cve
Reporter NVD
Modified 2018-08-13T17:47:37

Description

SQL injection vulnerability in api/ice_media.cfc in Lingxia I.C.E CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the session.user_id parameter to media.cfm.