CVE-2010-2926
CVE-2010-2926 concerns a SQL injection in the sNews 1.7 system, specifically in the site’s index.php where the category parameter is unsafely used to construct SQL queries. The vulnerability allows remote attackers to inject arbitrary SQL commands, enabling potential data disclosure/modification....