CVE-2008-6165 Information

Description

SQL injection vulnerability in gestion.php in CSPartner 0.1 when magic_quotes_gpc is disabled allows remote attackers to execute arbitrary SQL commands via the (1) pseudo and (2) passe parameters.

Reference

http://secunia.com/advisories/32376 http://www.securityfocus.com/bid/31886 https://exchange.xforce.ibmcloud.com/vulnerabilities/46067 https://www.exploit-db.com/exploits/6814