CVE-2011-2917

2011-12-08T19:55:00
ID CVE-2011-2917
Type cve
Reporter cve@mitre.org
Modified 2011-12-09T05:00:00

Description

SQL injection vulnerability in administrator/index2.php in Mambo CMS 4.6.5 and earlier allows remote attackers to execute arbitrary SQL commands via the zorder parameter.