CVE-2008-4350

Publication date

2008-09-30 18:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in main.php in vbLOGIX Tutorial Script 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a list action.