2 matches found
CVE-2009-2389
Multiple SQL injection vulnerabilities in newsscript.php in USOLVED NEWSolved 1.1.6, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 jahr or 2 idneu parameter in an archive action, or 3 the newsid parameter...
CVE-2009-2389
Multiple SQL injection vulnerabilities in newsscript.php in USOLVED NEWSolved 1.1.6, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 jahr or 2 idneu parameter in an archive action, or 3 the newsid parameter...