CVE-2007-3811 Information

Description

Multiple SQL injection vulnerabilities in eSyndiCat allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to news.php or (2) the name parameter to page.php.

Reference

http://osvdb.org/36266 http://osvdb.org/36267 http://www.securityfocus.com/bid/24908 http://www.vupen.com/english/advisories/2007/2543 https://exchange.xforce.ibmcloud.com/vulnerabilities/35427 https://www.exploit-db.com/exploits/4183