CVE-2008-6917

Publication date

2009-08-07 18:33:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in admin.php in Exocrew ExoPHPDesk 1.2 Final allows remote attackers to execute arbitrary SQL commands via the username (user parameter).