CVE-2006-6157

ContentNow is affected by an SQL injection in index.php (v1.39 and earlier) that allows remote attackers to inject arbitrary SQL via the pageid parameter. The underlying issue can also expose path information when a non-existent/invalid pageid is provided. Affected product: ContentNow up to versi...