CVE-2007-1846 Information

Description

SQL injection vulnerability in index.php in the MyAds 2.04jp and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the cid parameter different vectors than CVE-2006-3341.

Reference

http://osvdb.org/37372 http://www.securityfocus.com/bid/23212 https://exchange.xforce.ibmcloud.com/vulnerabilities/33334 https://www.exploit-db.com/exploits/3603