CVE-2010-0404

Multiple SQL injection vulnerabilities in phpGroupWare phpgw before 0.9.16.016 allow remote attackers to execute arbitrary SQL commands via unspecified parameters to 1 class.sessionsdb.inc.php, 2 class.translationsql.inc.php, or 3 class.authsql.inc.php in phpgwapi/inc/...