2 matches found
CVE-2006-2911
The CVE concerns CMS Mundo prior to 1.0 build 008, where SQL injection in controlpanel/index.php via the login username parameter allows remote attackers to execute arbitrary SQL commands. This vulnerability affects the username handling in the login flow, enabling potential data disclosure/manip...
Secunia Research: CMS Mundo SQL Injection and File Upload Vulnerabilities
====================================================================== Secunia Research 14/06/2006 - CMS Mundo SQL Injection and File Upload Vulnerabilities - ====================================================================== Table of Contents Affected...