CVE-2012-1002

2012-02-08T04:11:00
ID CVE-2012-1002
Type cve
Reporter cve@mitre.org
Modified 2017-12-07T02:29:00

Description

SQL injection vulnerability in author/edit.php in OpenConf 4.x before 4.12 allows remote attackers to execute arbitrary SQL commands via the pid parameter.