CVE-2008-6368 Information

Description

SQL injection vulnerability in index.php in Chipmunk Guestbook 1.4m allows remote attackers to execute arbitrary SQL commands via the start parameter.

Reference

http://osvdb.org/50343 http://packetstorm.linuxsecurity.com/0811-exploits/chipmunkguestbook-sqlxss.txt http://secunia.com/advisories/32907 http://www.securityfocus.com/bid/18195 https://exchange.xforce.ibmcloud.com/vulnerabilities/46941