CVE-2014-5082

2014-08-06T18:55:00
ID CVE-2014-5082
Type cve
Reporter cve@mitre.org
Modified 2015-11-04T16:32:00

Description

Multiple SQL injection vulnerabilities in admin/admin.php in Sphider 1.3.6 and earlier, Sphider Pro, and Sphider-plus allow remote attackers to execute arbitrary SQL commands via the (1) site_id or (2) url parameter.