CVE-2010-0454
The CVE-2010-0454 entry describes a SQL injection in Publique! 2.3, exploitable via the sid parameter in cgi/cgilua.exe/sys/start.htm. Affected component is Publique! 2.3 (cgi/cgilua.exe/sys/start.htm). The underlying issue is improper handling of user-supplied sid leading to arbitrary SQL execut...