CVE-2001-0201

Description

The Postaci frontend for PostgreSQL does not properly filter characters such as semicolons, which could allow remote attackers to execute arbitrary SQL queries via the deletecontact.php program.

Affected Software
References

Software	From	Fixed in
umut_gokbayrak / postaci	1.1.2	1.1.2.x
umut_gokbayrak / postaci	1.1.3	1.1.3.x

http://archives.neohapsis.com/archives/bugtraq/2001-01/0287.html
http://www.securityfocus.com/bid/2230
https://exchange.xforce.ibmcloud.com/vulnerabilities/5972

Severity: High

CVE: CVE-2001-0201
Published: Mar 26, 2001
Updated: Apr 13, 2023
Exploit:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CVE-2001-0201

Description

Details

CVSS v2