Security Advisory
CVE-2007-3000
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Multiple SQL injection vulnerabilities in PHP JackKnife (PHPJK) allow remote attackers to execute arbitrary SQL commands via (1) the iCategoryUnq parameter to G_Display.php or (2) the iSearchID parameter to Search/DisplayResults.php.