CVE-2007-3399

2007-06-26T17:30:00
ID CVE-2007-3399
Type cve
Reporter cve@mitre.org
Modified 2018-10-16T16:49:00

Description

SQL injection vulnerability in include/get_userdata.php in Power Phlogger (PPhlogger) 2.2.5 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter to login.php.