CVE-2007-3705

2007-07-11T23:30:00
ID CVE-2007-3705
Type cve
Reporter cve@mitre.org
Modified 2018-10-15T21:29:00

Description

SQL injection vulnerability in FuseTalk 2.0 allows remote attackers to execute arbitrary SQL commands via the FTVAR_SUBCAT (txForumID) parameter to forum/index.cfm and possibly other unspecified components, related to forum/include/error/forumerror.cfm.