CVE-2011-4341

Symphony CMS 2.2.3 (and possibly earlier 2.2.x) contains multiple SQL injection vulnerabilities in content.publish.php (filter parameter) that can be exploited by remote authenticated users with Author permissions to execute arbitrary SQL against (1) symphony/publish/comments or (2) symphony/publ...