Security Advisory

CVE-2007-2673

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-05-14 23:00:00

Last updated 2024-08-07 13:49:57

Assigner mitre

State PUBLISHED

Description

SQL injection vulnerability in includes/funcs_vendors.php in Censura 1.15.04, and other versions before 1.16.04, allows remote attackers to execute arbitrary SQL commands via the vendorid parameter in a vendor_info cmd action to censura.php.

← Browse all CVEs View on cve.org ↗