CVE-2007-6580 Information

Description

Multiple SQL injection vulnerabilities in Wallpaper Site 1.0.09 allow remote attackers to execute arbitrary SQL commands via (1) the catid parameter to category.php or (2) the groupid parameter to editadgroup.php.

Reference

http://osvdb.org/40368 http://osvdb.org/40369 http://www.securityfocus.com/bid/26984 https://www.exploit-db.com/exploits/4770