CVE-2007-6392
CVE-2007-6392 is an SQL injection vulnerability in DWdirectory 2.1 and earlier. The flaw allows remote attackers to execute arbitrary SQL commands via the search parameter to the /search URI. The connected documents confirm affected software (DWdirectory 2.1 and earlier) and the underlying cause ...