Security Advisory

CVE-2014-9464

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-01-03 22:00:00

Last updated 2024-09-16 17:23:20

Assigner mitre

State PUBLISHED

Description

SQL injection vulnerability in Category.php in Microweber CMS 0.95 before 20141209 allows remote attackers to execute arbitrary SQL commands via the category parameter when displaying a category, related to the $parent_id variable.

← Browse all CVEs View on cve.org ↗