CVE-2008-0920
CVE-2008-0920 describes an SQL injection in OSSIM 0.9.9 rc5, specifically in port/modifyportform.php where the portname parameter is not adequately validated by a regex. This allows remote authenticated users to execute arbitrary SQL commands. The description details that the vulnerability affect...