CVE-2013-3602 Information

Description

SQL injection vulnerability in admindocumentworker.jsp in Coursemill Learning Management System (LMS) 6.6 allows remote authenticated users to execute arbitrary SQL commands via the docID parameter.

Reference

http://www.kb.cert.org/vuls/id/960908