CVE-2010-3428

Publication date

2010-09-16 21:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in modules/notes/json.php in Intermesh Group-Office 3.5.9 allows remote attackers to execute arbitrary SQL commands via the category_id parameter in a category action.