MidnightBSD

Advisories for ismail_fahmi

CVE-2014-100031 HIGH

Multiple SQL injection vulnerabilities in Ganesha Digital Library (GDL) 4.2 allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) download.php or (2) main.php.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
ismail_fahmi ganesha_digital_library 4.2