Security Advisory

CVE-2006-6157

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-11-28 23:00:00

Last updated 2024-08-07 20:19:34

Assigner mitre

State PUBLISHED

Description

SQL injection vulnerability in index.php in ContentNow 1.39 and earlier allows remote attackers to execute arbitrary SQL commands via the pageid parameter. NOTE: this issue can be leveraged for path disclosure with an invalid pageid parameter.

← Browse all CVEs View on cve.org ↗