PT-2005-3098 · Plague · Plague News System
Name of the Vulnerable Software and Affected Versions: Plague News System versions 0.6 and earlier Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the cid parameter in the "index.php" endpoint. Recommendations: For Plague News System versions...