CVE-2008-5165

2008-11-19T18:11:00
ID CVE-2008-5165
Type cve
Reporter cve@mitre.org
Modified 2017-08-08T01:33:00

Description

Multiple SQL injection vulnerabilities in eTicket 1.5.7 allow remote attackers to execute arbitrary SQL commands via the pri parameter to (1) index.php, (2) open.php, (3) open_raw.php, and (4) newticket.php.