cve/CVE-2010-4979.md at master - cve - Gitea: Git with a cup of tea

0xMarcio/cve

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

636 B

Raw Permalink Blame History

CVE-2010-4979

Description

SQL injection vulnerability in image/view.php in CANDID allows remote attackers to execute arbitrary SQL commands via the image_id parameter.

POC

Reference

http://www.packetstormsecurity.com/1006-exploits/candid-sql.txt

Github

No PoCs found on GitHub currently.