CVE-2007-1811 Information

Description

SQL injection vulnerability in index.php in the Tiny Event (tinyevent) 1.01 and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the id parameter in a show action.

Reference

http://osvdb.org/34470 https://exchange.xforce.ibmcloud.com/vulnerabilities/33359 https://www.exploit-db.com/exploits/3625