3 matches found
CVE-2009-3419
SQL injection vulnerability in index.php in the Publisher module 2.0 for Miniweb allows remote attackers to execute arbitrary SQL commands via the historymonth parameter...
Sql injection
SQL injection vulnerability in index.php in the Publisher module 2.0 for Miniweb allows remote attackers to execute arbitrary SQL commands via the historymonth parameter...
CVE-2009-3419
CVE-2009-3419 describes an SQL injection in the Miniweb Publisher module 2.0, via index.php and the historymonth parameter. Affected software: Miniweb Publisher module 2.0 (index.php). Root cause: unsafely handled input in historymonth leading to SQL command execution. Impact: remote attackers co...