CVE-2007-0865
CVE-2007-0865 describes an SQL injection in the file comments.php of LushiNews 1.01 and earlier . The vulnerability allows remote authenticated users to inject arbitrary SQL commands through the id parameter. The entry scopes impact to partial confidentiality, integrity, and availability, with a ...