Mediatheka : Security Vulnerabilities, CVEs, Published In 2009 (Sql injection)
SQL injection vulnerability in connection.php in Mediatheka 4.2 and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter.
Max CVSS
7.5
EPSS Score
0.11%
Published
2009-01-12
Updated
2017-09-29
1 vulnerabilities found