CVE-2008-6282

SQL injection vulnerability in engine/users/users_edit_pub.inc in CMS Ortus 1.13 and earlier allows remote authenticated users to execute arbitrary SQL commands via the city parameter in a users_edit_pub action to index.php.
Configurations

Configuration 1

cpe:2.3:a:ortus.nirn:cms_ortus:1.12:*:*:*:*:*:*:*
cpe:2.3:a:ortus.nirn:cms_ortus:1.11:*:*:*:*:*:*:*
cpe:2.3:a:ortus.nirn:cms_ortus:*:*:*:*:*:*:*:*
cpe:2.3:a:ortus.nirn:cms_ortus:1.10.1:*:*:*:*:*:*:*

Information

Published : 2009-02-25 11:30

Updated : 2017-09-29 01:33


NVD link : CVE-2008-6282

Mitre link : CVE-2008-6282

Products Affected
No products.
CWE