CVE-2009-0705
23.02.2009, 15:30
SQL injection vulnerability in news.php in PowerScripts PowerNews 2.5.4, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the newsid parameter.
Vendor | Product | Version |
---|---|---|
powerscripts | powernews | 2.5.4 |
𝑥
= Vulnerable software versions
References