CVE-2008-2460
CVE-2008-2460 is an SQL injection vulnerability affecting vBulletin 3.7.0 Gold . The flaw is in faq.php where the q parameter in a search action is vulnerable, enabling remote attackers to execute arbitrary SQL commands . NVD lists a CVSS v2 base score of 7.5 (HIGH) with network access, no authen...