CVE-2007-3808

Publication date

2007-07-17 00:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in includes/search.php in paFileDB 3.6 allows remote attackers to execute arbitrary SQL commands via the categories[] parameter in a search action to index.php, a different vector than CVE-2005-2000.