CVE-2008-5813

描述

SQL injection vulnerability in inc/rubriques.php in SPIP 1.8 before 1.8.3b, 1.9 before 1.9.2g, and 2.0 before 2.0.2 allows remote attackers to execute arbitrary SQL commands via the ID parameter. NOTE: some of these details are obtained from third party information.

受影響套件(1)

• Debian/spipfrom 0, < 2.0.6-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2008-5813