CVE-2008-6152
CVE-2008-6152 is a SQL injection vulnerability in deptdisplay.asp of the SepCity Faculty Portal, exploitable via the ID parameter to allow remote execution of arbitrary SQL commands. The issue is attributed to unsanitized input in deptdisplay.asp (note: initial report mentions Lawyer Portal, whic...