CVE-2003-1504

Publication date

2007-10-25 19:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in variables.php in Goldlink 3.0 allows remote attackers to execute arbitrary SQL commands via the (1) vadmin_login or (2) vadmin_pass cookie in a request to goldlink.php.