CVE-2007-5999
CVE-2007-5999 : SQL injection in the Softbiz Auctions Script, via the id parameter in product_desc.php. The issue stems from unsafely constructed SQL in this script, allowing remote attackers to execute arbitrary SQL commands. Public references indicate exploit availability and fixes are not deta...