CVE-2008-6282
CVE-2008-6282 describes an SQL injection in CMS Ortus (versions 1.13 and earlier) affecting the file engine/users/users_edit_pub.inc. The vulnerability is exploitable by remote authenticated users who can inject via the city parameter in a users_edit_pub action to index.php, enabling arbitrary SQ...