CVE-2007-4114 Information

Description

Multiple SQL injection vulnerabilities in unuttum.asp in SuskunDuygular Uyelik Sistemi 1.2 allow remote attackers to execute arbitrary SQL commands via the (1) kadi or (2) email parameter. NOTE: some of these details are obtained from third party information.

Reference

http://secunia.com/advisories/26260 http://securityreason.com/securityalert/2945 http://www.securityfocus.com/archive/1/474929/100/0/threaded http://www.securityfocus.com/bid/25108 http://www.vupen.com/english/advisories/2007/2720 https://exchange.xforce.ibmcloud.com/vulnerabilities/35666