CVE-2014-8340 Information

Description

SQL injection vulnerability in Php/Functions/log_function.php in phpTrafficA 2.3 and earlier allows remote attackers to execute arbitrary SQL commands via a User-Agent HTTP header.

Reference

http://packetstormsecurity.com/files/129445/phpTrafficA-2.3-SQL-Injection.html http://www.securityfocus.com/archive/1/534184/100/0/threaded