SQL injection vulnerability in news.php in dB Masters Curium CMS 1.03 and earlier allows remote attackers to execute arbitrary SQL commands via the c_id parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Curium_cms | Db_masters_multimedia | * | 1.03 (including) |