Multiple SQL injection vulnerabilities in Contrexx before 1.0.5 allow remote attackers to execute arbitrary SQL commands via the (1) value parameter to the poll module or (2) pId parameter to the gallery module.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-08-03T04:00:00

Updated: 2024-08-07T22:22:49.133Z

Reserved: 2005-08-03T00:00:00

Link: CVE-2005-2415

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2005-08-03T04:00:00.000

Modified: 2024-11-20T23:59:30.267

Link: CVE-2005-2415

cve-icon Redhat

No data.