2 matches found
CVE-2008-0507
Summary: CVE-2008-0507 is an SQL injection in the WordPress AdServe plugin (version 0.2) specifically in the adclick.php script, where user-supplied the parameter id is unsafely used in a database query. The vulnerability allows remote attackers to execute arbitrary SQL commands via id, potential...
WordPress AdServe 'adclick.php' 'id' Parameter SQL Injection
The remote host is running AdServe, a third-party ad banner plugin for WordPress. The version of AdServe installed on the remote host fails to sanitize input to the 'id' parameter of the 'adclick.php' script before using it in a database query. Regardless of PHP's 'magicquotesgpc' setting, an...