CVE-2008-2918
The CVE-2008-2918 entry concerns an SQL injection in Application Dynamics Cartweaver 3.0 via the prodId parameter in details.php, allowing remote attackers to execute arbitrary SQL. Root cause appears to be unsanitized user input in the prodId parameter, leading to potential data compromise. Conn...