CVE-2011-4946

Publication date

2012-08-31 22:00:00

Family

redhat

State

PUBLISHED

Description

SQL injection vulnerability in e107_admin/users_extended.php in e107 before 0.7.26 allows remote attackers to execute arbitrary SQL commands via the user_field parameter.