CVE-2007-2004 Information

Description

Multiple SQL injection vulnerabilities in InoutMailingListManager 3.1 and earlier allow remote attackers to execute arbitrary SQL commands via the id parameter to changename.php and other unspecified vectors.

Reference

http://secunia.com/advisories/24842 http://www.vupen.com/english/advisories/2007/1345 https://www.exploit-db.com/exploits/3702