2 matches found
CVE-2009-3117
CVE-2009-3117 describes a SQL injection vulnerability in category.php of Snow Hall Silurus System 1.0, where the attacker can craft the ID parameter to execute arbitrary SQL commands. The affected software is Snow Hall Silurus System 1.0; the vulnerable component is category.php. The initial disc...
CVE-2009-3117
SQL injection vulnerability in category.php in Snow Hall Silurus System 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter...