SQL injection vulnerability in ajax.php in evalSMSI 2.1.03 allows remote attackers to execute arbitrary SQL commands via the query parameter in the (1) question action, and possibly the (2) sub_par or (3) num_quest actions.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2010-02-11T17:00:00

Updated: 2024-08-07T00:52:19.908Z

Reserved: 2010-02-11T00:00:00

Link: CVE-2010-0614

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2010-02-11T17:30:01.190

Modified: 2018-10-10T19:53:06.790

Link: CVE-2010-0614

cve-icon Redhat

No data.