2 matches found
CVE-2007-6106
SQL injection vulnerability in index.php in AlstraSoft E-Friends 4.98 and earlier allows remote attackers to execute arbitrary SQL commands via the seid parameter in a viewevent action...
CVE-2007-6106
AlstraSoft E-Friends up to version 4.98 and earlier is affected by an SQL injection in index.php via the seid parameter in the viewevent action, allowing remote attackers to execute arbitrary SQL commands. The connected documents provide the affected product/version and the vulnerable parameter, ...