CVE-2007-3399
Power Phlogger (PPhlogger) 2.2.5 and earlier contains an SQL injection in include/get_userdata.php that can be exploited via the username parameter to login.php, enabling remote execution of arbitrary SQL commands. This mode documents the affected component and the underlying flaw; no remediation...