CVE-2007-3430 Information

Description

SQL injection vulnerability in index.php in Simple Invoices 2007 05 25 allows remote attackers to execute arbitrary SQL commands via the submit parameter in an email action.

Reference

http://osvdb.org/36293 http://secunia.com/advisories/25789 http://www.securityfocus.com/bid/24601 http://www.vupen.com/english/advisories/2007/2310 https://exchange.xforce.ibmcloud.com/vulnerabilities/35021 https://www.exploit-db.com/exploits/4098