CVE-2008-1406
CVE-2008-1406 describes an SQL injection in the MyAnnonces 1.8 module for eXV2, in annonces-p-f.php. The vulnerability is exploitable via the lid parameter in an ImprAnn action, allowing remote attackers to execute arbitrary SQL commands. The connected documents confirm the affected component and...