CVE-2017-15907

Publication date

2017-10-26 05:00:00

Family

mitre

State

PUBLISHED

Description

SQL injection vulnerability in phpCollab 2.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to newsdesk/newsdesk.php.