2 matches found
CVE-2008-4897
SQL injection vulnerability in fichiers/addurl.php in Logz podcast CMS 1.3.1, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the art parameter...
CVE-2008-4897
CVE-2008-4897 affects Logz Podcast CMS 1.3.1; vulnerable component is the fichiers/add_url.php handler. The root cause is an SQL injection when magic_quotes_gpc is disabled, allowing remote attackers to modify/steal data by injecting SQL via the art parameter. CVSS metrics indicate NETWORK access...