CVE-2008-6028
CVE-2008-6028 is a SQL injection in list.php of University of Queensland Library Fez (versions 1.3 and 2.0 RC1). The vulnerability allows remote attackers to modify the underlying SQL by manipulating the parent_id parameter in a subject action, enabling arbitrary SQL execution. The supplied docum...