2 matches found
CVE-2007-0128
SQL injection vulnerability in infobook.asp in Digirez 3.4 and earlier allows remote attackers to execute arbitrary SQL commands via the bookid parameter...
CVE-2007-0128
CVE-2007-0128 describes an SQL injection vulnerability in info_book.asp for Digirez 3.4 and earlier, where the book_id parameter can be manipulated to execute arbitrary SQL commands remotely. Affected software is Digirez (versions up to 3.4 and earlier); the underlying root cause is improper hand...