CVE-2012-4743 Information

Description

Multiple SQL injection vulnerabilities in ssearch.php in Siche search module 0.5 for Zeroboard allow remote attackers to execute arbitrary SQL commands via the (1) ss (2) sm (3) align or (4) category parameters.

Reference

http://archives.neohapsis.com/archives/bugtraq/2012-04/0099.html http://osvdb.org/81178 http://www.securityfocus.com/bid/53035 http://www.vulnerability-lab.com/get_content.php?id=504 https://exchange.xforce.ibmcloud.com/vulnerabilities/74916