CVE-2007-2749

2007-05-17T20:30:00
ID CVE-2007-2749
Type cve
Reporter cve@mitre.org
Modified 2017-10-11T01:32:00

Description

SQL injection vulnerability in question.php in FAQEngine 4.16.03 and earlier allows remote attackers to execute arbitrary SQL commands via the questionref parameter in a display action.