CVE-2008-5727
The CVE describes an SQL injection in AIST NetCat 3.12 and earlier, specifically in modules/auth/password_recovery.php when magic_quotes_gpc is disabled. The underlying issue allows remote attackers to inject arbitrary SQL via the query string, enabling potential data disclosure or modification. ...