CVE-2008-2087

Publication date

2008-05-06 15:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in search_result.php in Softbiz Web Host Directory Script, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the host_id parameter, a different vector than CVE-2005-3817.