2005-11-16 07:37:00
mitre
PUBLISHED
game_score.php in e107 allows remote attackers to insert high scores via HTTP POST methods utilizing the $player_name, $player_score, and $game_name variables.