2 matches found
CVE-2007-4966
SQL injection vulnerability in www/people/editprofile.php in GForge 4.6b2 and earlier allows remote attackers to execute arbitrary SQL commands via the skilldelete parameter...
CVE-2007-4966
CVE-2007-4966 affects GForge 4.6b2 and earlier. The flaw is a SQL injection in www/people/editprofile.php via the skill_delete[] parameter, allowing remote attackers to execute arbitrary SQL commands. Documented impacts include potential data exposure and modification; CVSS v2 base score 6.8 (MED...