CVE-2007-6292
CVE-2007-6292: SQL injection vulnerability in leggi_commenti.asp in MWOpen 1.4 and earlier allows remote attackers to execute arbitrary SQL via the id parameter. Affected software: MWOpen 1.4 and earlier. Root cause: improper handling of user-supplied id value in the SQL query. Impact: potential ...