CVE-2008-6422 Information

Description

Multiple SQL injection vulnerabilities in PsychoStats 2.3 2.3.1 and 2.3.3 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) weapon.php and (2) map.php.

Reference

http://osvdb.org/45868 http://osvdb.org/45869 http://secunia.com/advisories/30464 http://www.securityfocus.com/bid/29449 https://exchange.xforce.ibmcloud.com/vulnerabilities/42770 https://www.exploit-db.com/exploits/5699