CVE-2007-0202
CVE-2007-0202 describes a SQL injection in the Web Guestbook app. Affected software: @lex Guestbook 4.0.2 and earlier, specifically via the index.php handler. Root cause: when magic_quotes_gpc is disabled, the parameter lang is unsafely used in a SQL query, enabling an attacker to inject arbitrar...