CVE-2008-6434 Information

Description

SQL injection vulnerability in index.cfm in Blue River Interactive Group Sava CMS before 5.0.122 allows remote attackers to execute arbitrary SQL commands via the LinkServID parameter.

Reference

http://holisticinfosec.org/content/view/67/45/ http://osvdb.org/45616 http://secunia.com/advisories/30367 http://www.securityfocus.com/bid/29346 https://exchange.xforce.ibmcloud.com/vulnerabilities/49225