CVE-2007-6566
CVE-2007-6566 describes an SQL injection in post.php of XZero Community Classifieds 4.95.11 and earlier. The vulnerability allows remote attackers to execute arbitrary SQL commands via the subcatid parameter to index.php. The NVD entry lists a CVSS v2 base score of 7.5 (High). No exploitation det...