3 matches found
Sql injection
SQL injection vulnerability in newspopup.php in Taboada MacroNews 1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter...
CVE-2014-10032
CVE-2014-10032 affects the Taboada MacroNews 1.0 software, specifically the web component news_popup.php. The vulnerability is an SQL injection via the id parameter that can be exploited by remote authenticated users to execute arbitrary SQL commands. The affected product appears in public record...
CVE-2014-10032
SQL injection vulnerability in newspopup.php in Taboada MacroNews 1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter...