Description
content.pl script in NCM Content Management System allows remote attackers to read arbitrary contents of the content database by inserting SQL characters into the id parameter.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by RA-Soft Security · textremotecgi
https://www.exploit-db.com/exploits/20752
References (2)
Core 2
Core References
Exploit, Vendor Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-04/0223.html
Exploit, Patch, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/2584
Scores
EPSS
0.0447
EPSS Percentile
89.2%
Details
Status
published
Products (1)
ncm/ncm_content_management_system
Published
Jul 02, 2001
Tracked Since
Feb 18, 2026