2 matches found
CVE-2010-0471
CVE-2010-0471 affects Enano CMS up to version 1.0.6pl1. The vulnerability is an SQL injection in the comment submission interface (includes/comment.php), allowing remote attackers to execute arbitrary SQL via unspecified parameters. Remediation: upgrade to 1.0.6pl1 (see release notes). No exploit...
CVE-2010-0471
SQL injection vulnerability in the comment submission interface includes/comment.php in Enano CMS before 1.0.6pl1 allows remote attackers to execute arbitrary SQL commands via unspecified parameters...