CVE-2008-6776 Information

Description

SQL injection vulnerability in viewcomments.php in Scripts For Sites (SFS) EZ Hot or Not allows remote attackers to execute arbitrary SQL commands via the phid parameter.

Reference

http://osvdb.org/49540 http://secunia.com/advisories/32532 https://exchange.xforce.ibmcloud.com/vulnerabilities/46278 https://www.exploit-db.com/exploits/6914