CVE-2008-1065

2008-02-28T20:44:00
ID CVE-2008-1065
Type cve
Reporter cve@mitre.org
Modified 2008-09-05T21:36:00

Description

Multiple SQL injection vulnerabilities in index.php in the XM-Memberstats (xmmemberstats) 2.0e module for XOOPS allow remote attackers to execute arbitrary SQL commands via the (1) letter or (2) sortby parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.