CVE-2007-2898

2007-05-30T10:30:00
ID CVE-2007-2898
Type cve
Reporter cve@mitre.org
Modified 2018-10-16T16:46:00

Description

SQL injection vulnerability in includes/rating.php in 2z Project 0.9.5 allows remote attackers to execute arbitrary SQL commands via the rating parameter to index.php.