CVE-2008-3297
SocialEngine (SE) is affected by multiple SQL injection vulnerabilities in versions prior to 2.83. The flaws allow remote attackers to inject arbitrary SQL commands via cookies: (1) se_user cookie used with include/class_user.php, or (2) se_admin cookie used with include/class_admin.php. The issu...