|
 SmartBox is
a PHP-based content manager. The application is exposed
to an SQL injection issue because it fails to properly
sanitize user-supplied input before using it in an SQL
query. Specifically, the application fails to sanitize
data supplied to the "page_id" parameter of the "page.php"
script.
Ref:
http://www.securityfocus.com/bid/45101
10.49.35 - CVE: Not Available
Platform: Web Application - SQL Injection Issue |
