2 matches found
CVE-2007-1326
SQL injection vulnerability in index.php in Serendipity 1.1.1 allows remote attackers to execute arbitrary SQL commands via the serendipitymultiCat parameter...
CVE-2007-1326
The CVE-2007-1326 entry concerns a SQL injection in Serendipity 1.1.1. Affects index.php where the parameter serendipity[multiCat][] can be supplied by an attacker to execute arbitrary SQL commands. This is exploitable remotely and can compromise data integrity and confidentiality as described. T...