CVE-2005-4408
Multiple SQL injection vulnerabilities in Miraserver 1.0 RC4 and earlier allow remote attackers to execute arbitrary SQL commands via user-supplied input in three vectors: the page parameter to index.php, the id parameter to newsitem.php, and the cat parameter to article.php. The root cause is un...