2005-03-04 05:00:00
mitre
PUBLISHED
SQL injection vulnerability in auth.php in paNews 2.0.4b allows remote attackers to execute arbitrary SQL via the mysql_prefix parameter.