2 matches found
CVE-2005-0410
CVE-2005-0410 affects CitrusDB up to version 0.3.6, where importcc.php is vulnerable to SQL injection via fields in uploaded CSV data. This allows remote attackers to inject data into the database through crafted CSV files. Evidence from multiple sources confirms the vulnerability exists in Citru...
CVE-2005-0410
SQL injection vulnerability in importcc.php for CitrusDB 0.3.6 and earlier allows remote attackers to inject data via the fields of a CSV file...