CVE-2008-2907
CVE-2008-2907 describes a SQL injection in WebChamado 1.1 (admin/index.php) where, if magic_quotes_gpc is disabled, an attacker can inject arbitrary SQL via the eml parameter. The CVSS v2 base score is 6.8 (MEDIUM). Connected sources confirm the vulnerable component and input vector; explicit rem...