2 matches found
CVE-2008-6179
SQL injection vulnerability in sugcat.php in IndexScript 3.0 allows remote attackers to execute arbitrary SQL commands via the parentid parameter, a different vector than CVE-2007-4069...
CVE-2008-6179
CVE-2008-6179 describes an SQL injection in sug_cat.php of IndexScript 3.0. The root cause is improper handling of the parent_id parameter, enabling remote attackers to inject arbitrary SQL. This is a different vector from CVE-2007-4069. The connected PRION/NVD entries confirm the same vulnerabil...