CVE-2014-2339

Publication date

2014-03-19 14:00:00

Family

mitre

State

PUBLISHED

Description

Multiple SQL injection vulnerabilities in bbs/ajax.autosave.php in GNUboard 5.x and possibly earlier allow remote authenticated users to execute arbitrary SQL commands via the (1) subject or (2) content parameter.