CVE-2010-2672
The CVE-2010-2672 entry concerns eZ Publish versions 3.7.0–4.2.0. The vulnerability is a set of SQL injection flaws exploitable via user input to the search feature (parameters SectionID and SearchTimestamp) and to the advancedsearch feature (parameter SearchContentClassAttributeID). The underlyi...