CVE-2015-5659 Information

Description

SQL injection vulnerability in Network Applied Communication Laboratory Pref Shimane CMS 2.x before 2.0.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

Reference

http://jvn.jp/en/jp/JVN84982142/995760/index.html http://jvn.jp/en/jp/JVN84982142/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2015-000158 https://github.com/NaCl-Ltd/pref-shimane-cms/blob/master/README.md https://github.com/NaCl-Ltd/pref-shimane-cms/commit/5ec03cb174513844c410ee7fba594c544ba80ce2 https://github.com/NaCl-Ltd/pref-shimane-cms/commit/ab96ec7661f15a0129940eed9215c91f1acbf564