CVE-2001-0234 Information

Description

NewsDaemon before 0.21b allows remote attackers to execute arbitrary SQL queries and gain privileges via a malformed user_username parameter.

Reference

http://archives.neohapsis.com/archives/bugtraq/2001-01/0460.html http://sourceforge.net/forum/forum.php?forum_id=60570 https://exchange.xforce.ibmcloud.com/vulnerabilities/6010