CVE-2008-4072
CVE-2008-4072 affects phsBlog 0.2 via SQL injection in index.php, exploitable through the sid parameter (pickup action) or the sql_cid parameter. The root cause, as stated, is unsafe SQL construction allowing remote attackers to insert arbitrary SQL. The connected documents do not provide concret...