CVE-2007-2312
The CVE-2007-2312 entry identifies multiple SQL injection vulnerabilities in Virtual War (VWar) 1.5.0 R15 for PHP-Nuke, exploitable via the n parameter to extra/online.php and other scripts in extra/. The underlying issue is unsafely constructed SQL in these scripts, enabling remote execution of ...