CVE-2007-3808

2007-07-17T00:30:00
ID CVE-2007-3808
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:29:00

Description

SQL injection vulnerability in includes/search.php in paFileDB 3.6 allows remote attackers to execute arbitrary SQL commands via the categories[] parameter in a search action to index.php, a different vector than CVE-2005-2000.