Multiple SQL injection vulnerabilities in PHPlist 2.10.1 and earlier allow authenticated remote attackers with administrator privileges to execute arbitrary SQL commands via the id parameter in the (1) editattributes or (2) admin page.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2005-11-16T07:37:00
Updated: 2024-08-07T23:17:23.580Z
Reserved: 2005-11-16T00:00:00
Link: CVE-2005-3555
Vulnrichment
No data.
NVD
Status : Modified
Published: 2005-11-16T07:42:00.000
Modified: 2024-11-21T00:02:10.383
Link: CVE-2005-3555
Redhat
No data.