SQL injection vulnerability in the check_banlist function in includes/sessions.php in Enano CMS 1.1.7pl1; 1.0.6pl2; and possibly other versions before 1.1.8, 1.0.6pl3, and 1.1.7pl2 allows remote attackers to execute arbitrary SQL commands via the email parameter to index.php. NOTE: some of these details are obtained from third party information.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2011-04-07T14:00:00

Updated: 2024-08-07T03:55:35.205Z

Reserved: 2011-04-07T00:00:00

Link: CVE-2010-4780

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2011-04-07T14:23:53.310

Modified: 2024-11-21T01:21:45.590

Link: CVE-2010-4780

cve-icon Redhat

No data.