CVE-2008-6678
The CVE-2008-6678 entry describes a SQL injection in QuickerSite 1.8.5, exploitable through the sNickName parameter in asp/includes/contact.asp during a profile action to default.asp. Remote attackers can execute arbitrary SQL commands. The public documents confirm the vulnerable component and in...