CVE-2007-1909
The CVE-2007-1909 entry refers to a SQL injection vulnerability in the Battle.net Clan Script for PHP (version 1.5.1 and earlier). The flaw is in login.php and allows remote attackers to execute arbitrary SQL commands via the (1) user or (2) pass parameter. This can impact confidentiality, integr...