CVE-2008-2455 Information

Description

SQL injection vulnerability in comment.php in the MacGuru BLOG Engine plugin 2.2 for e107 allows remote attackers to execute arbitrary SQL commands via the rid parameter.

Reference

http://secunia.com/advisories/30212 http://www.securityfocus.com/bid/29181 https://exchange.xforce.ibmcloud.com/vulnerabilities/42386 https://www.exploit-db.com/exploits/5604