2005-03-07 05:00:00
mitre
PUBLISHED
index.php in Zorum 3.5 allows remote attackers to trigger an SQL error, and possibly inject arbitrary SQL commands, via the search capability.