2 matches found
Sql injection
Multiple SQL injection vulnerabilities in Mini-Nuke CMS System 1.8.2 and earlier allow remote attackers to execute arbitrary SQL commands via 1 the uid parameter in a members.asp, the 2 catid parameter in b articles.asp and c programs.asp, and the 3 id parameter in d hpages.asp and e forum.asp...
CVE-2006-0870
The CVE-2006-0870 entry concerns the Mini-Nuke CMS System (versions 1.8.2 and earlier). The vulnerability is a SQL injection in pages.asp accessible via the id parameter, allowing remote attackers to execute arbitrary SQL commands. The note also states that version 2.3 was later reported vulnerab...