CVE-2007-2339
CVE-2007-2339 concerns Phorum prior to 5.1.22. The vulnerability enables remote attackers to execute arbitrary SQL commands through multiple input vectors: (1) a modified recipients parameter name in pm.php; (2) the curr parameter to the badwords (censorlist) or banlist module in admin.php; or (3...