CVE-2010-0471 Information

Description

SQL injection vulnerability in the comment submission interface (includes/comment.php) in Enano CMS before 1.0.6pl1 allows remote attackers to execute arbitrary SQL commands via unspecified parameters.

Reference

http://enanocms.org/Release_notes/1.0.6pl1 http://secunia.com/advisories/38253 http://www.osvdb.org/61974