CVE-2008-3756
The CVE-2008-3756 entry concerns a SQL injection in tr.php of the YourFreeWorld Viral Marketing Script, exploitable via the id parameter to execute arbitrary SQL commands. The NVD entry lists a CVSSv2 base score of 7.5 (HIGH) with network access, low attack complexity, and no authentication requi...