CVE-2007-3979
CVE-2007-3979 affects BlogSite Professional (aka Blog System) 1.x. The vulnerability is a SQL injection in index.php via the news_id parameter , allowing remote attackers to execute arbitrary SQL commands. This is a straightforward input-injection flaw in the web application layer that leads to p...