Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') |
Vulnerability | Severity Score | Release Date | Summary |
---|---|---|---|
CVE-2008-4355 | 7.5 | Sept. 30, 2008 | SQL injection vulnerability in showprofil.php in Powie PSCRIPT Forum (aka PHP Forum or pForum) 1.30 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. |