CVE-2008-0873 Information

Description

SQL injection vulnerability in index.php in the jlmZone Classifieds module for XOOPS allows remote attackers to execute arbitrary SQL commands via the cid parameter in an Adsview action.

Reference

http://securityreason.com/securityalert/3681 http://www.securityfocus.com/archive/1/488357/100/0/threaded http://www.securityfocus.com/bid/27895 https://www.exploit-db.com/exploits/5158