CVE-2007-6240
CVE-2007-6240 concerns a SQL injection in Snitz Forums 2000 (build 3.4.06) via the BuildTime parameter in active.asp, allowing remote attackers to execute arbitrary SQL commands. Affected software: Snitz Forums 2000 3.4.06. Root cause: unparameterized SQL handling in the active.asp path. Impact: ...