CVE-2004-1668 Information

Description

Multiple SQL injection vulnerabilities in index.php in Subjects 2.0 Postnuke module allow remote attackers to execute arbitrary SQL commands via the (1) pageid (2) subid or (3) catid parameters.

Reference

http://marc.info/?l=bugtraq&m=109483089621955&w=2 http://secunia.com/advisories/12497 http://www.securityfocus.com/bid/11148 https://exchange.xforce.ibmcloud.com/vulnerabilities/17311