CVE-2005-3594 Information

Description

game_score.php in e107 allows remote attackers to insert high scores via HTTP POST methods utilizing the $player_name $player_score and $game_name variables.

Reference

http://marc.info/?l=bugtraq&m=113141422014568&w=2 http://securityreason.com/securityalert/158