2 matches found
CVE-2008-1961
Voice Of Web AllMyGuests 0.4.1 is affected by CVE-2008-1961: an SQL injection in index.php allows remote attackers to execute arbitrary SQL via the AMG_id parameter in the comments action. Root cause: unsanitized AMG_id input in comments processing leads to query manipulation. No remediation deta...
CVE-2008-1961
SQL injection vulnerability in index.php in Voice Of Web AllMyGuests 0.4.1 allows remote attackers to execute arbitrary SQL commands via the AMGid parameter in a comments action...