CVE-2008-6165

CVE-2008-6165 refers to an SQL injection vulnerability in the PHP application component named gestion.php of CSPartner 0.1 . The flaw arises when magic_quotes_gpc is disabled , allowing remote attackers to inject arbitrary SQL via the parameters (1) pseudo and (2) passe . Exploitation details are...