2 matches found
Sql injection
SQL injection vulnerability in show.php in phpaaCms 0.3.1 UTF-8, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2010-2719
In the provided documents, phpaaCMS shows a SQL injection in show.php via the id parameter (version 0.3.1 UTF-8; potentially other versions). The root cause is improper input handling that allows remote attackers to execute arbitrary SQL commands. The OpenVAS entry explicitly notes multiple SQL i...