SQL injection vulnerability in categoria.php in LiveCMS 3.4 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Livecms | Livecms | 3.0 (including) | 3.0 (including) |
Livecms | Livecms | 3.3 (including) | 3.3 (including) |
Livecms | Livecms | 3.3_rc1 (including) | 3.3_rc1 (including) |
Livecms | Livecms | 3.3_rc2 (including) | 3.3_rc2 (including) |
Livecms | Livecms | 3.4 (including) | 3.4 (including) |
Livecms | Livecms | 3.4a (including) | 3.4a (including) |