SQL injection vulnerability in the check_banlist function in includes/sessions.php in Enano CMS 1.1.7pl1; 1.0.6pl2; and possibly other versions before 1.1.8, 1.0.6pl3, and 1.1.7pl2 allows remote attackers to execute arbitrary SQL commands via the email parameter to index.php. NOTE: some of these details are obtained from third party information.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2011-04-07T14:00:00
Updated: 2024-08-07T03:55:35.205Z
Reserved: 2011-04-07T00:00:00
Link: CVE-2010-4780
Vulnrichment
No data.
NVD
Status : Modified
Published: 2011-04-07T14:23:53.310
Modified: 2024-11-21T01:21:45.590
Link: CVE-2010-4780
Redhat
No data.