Sql injection

SQL injection vulnerability in MKPortal 1.1.1 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka ZD-00000008. this information is based upon a vague advisory by a vulnerability information sales organization that does not coordinate with vendors or release...

CVE-2007-3637

The CVE-2007-3637 entry describes a SQL injection vulnerability in MKPortal 1.1.1 that allows remote attackers to execute arbitrary SQL commands via unspecified vectors. The root cause is a SQL injection flaw in MKPortal 1.1.1, with impact described as unauthorized database command execution. The...