CVE-2014-2211

2014-03-03T16:55:00
ID CVE-2014-2211
Type cve
Reporter cve@mitre.org
Modified 2014-03-07T20:32:00

Description

SQL injection vulnerability in portal/addtoapplication.php in POSH (aka Posh portal or Portaneo) 3.0 before 3.3.0 allows remote attackers to execute arbitrary SQL commands via the rssurl parameter.