Sql injection

Multiple SQL injection vulnerabilities in Open Source Security Information Management OSSIM before 2.1.2 allow remote authenticated users to execute arbitrary SQL commands via the iddocument parameter to 1 repositorydocument.php, 2 repositorylinks.php, and 3 repositoryeditdocument.php in...