CVE-2011-5235 Information

Description

SQL injection vulnerability in mnoGoSearch before 3.3.12 allows remote attackers to execute arbitrary SQL commands via the hostname in a hypertext link.

Reference

http://secunia.com/advisories/47272 http://www.mnogosearch.org/doc33/msearch-changelog.htmlchangelog-3-3-12 http://www.osvdb.org/77949 http://www.securityfocus.com/bid/51113 https://exchange.xforce.ibmcloud.com/vulnerabilities/71884