SQL Injection Vulnerability in ATutor AContent Platform by ATutor Inc.
CVE-2012-5167
Currently unrated
What is CVE-2012-5167?
Multiple SQL injection vulnerabilities exist in the ATutor AContent platform, allowing remote attackers to execute arbitrary SQL commands. These vulnerabilities are found in certain parameters of key scripts such as course_category/index_inline_editor_submit.php and user/index_inline_editor_submit.php. By exploiting these weaknesses, attackers could potentially manipulate database queries, resulting in unauthorized actions or access to sensitive data.