CVE-2008-2972

Publication date

2008-07-02 17:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in index.php in KbLance allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a comment action.