CVE-2007-0789 Information

Description

SQL injection vulnerability in Mambo before 4.5.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors in cancel edit functions possibly related to the id parameter.

Reference

http://mamboxchange.com/frs/shownotes.php?release_id=6232 http://osvdb.org/33088 http://secunia.com/advisories/24044 http://www.vupen.com/english/advisories/2007/0480