2 matches found
CVE-2010-4774
SQL injection vulnerability in pdf.php in AuraCMS 1.62 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2007-4804 and CVE-2007-4171...
CVE-2010-4774
Summary (CVE-2010-4774): AuraCMS 1.62 contains an SQL injection in the pdf.php component, exploitable via the id parameter to allow remote execution of arbitrary SQL commands. This vulnerability is documented as a separate vector from CVE-2007-4804/2007-4171, and is supported by multiple connecte...