CVE-2007-6004 Information

Description

Multiple SQL injection vulnerabilities in index.php in Toko Instan 7.6 allow remote attackers to execute arbitrary SQL commands via (1) the id parameter in an artikel action or (2) the katid parameter in a produk action.

Reference

http://www.securityfocus.com/bid/26433 http://www.vupen.com/english/advisories/2007/3906 https://exchange.xforce.ibmcloud.com/vulnerabilities/38449 https://www.exploit-db.com/exploits/4623