SQL injection vulnerability in the ConcoursPhoto module for KwsPHP allows remote attackers to execute arbitrary SQL commands via the C_ID parameter to index.php.
References
Configurations
Information
Published : 2008-04-12 13:05
Updated : 2017-09-28 18:30
NVD link : CVE-2008-1758
Mitre link : CVE-2008-1758
JSON object : View
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Products Affected
kwsphp
- kwsphp