CVE-2007-0865

SQL injection vulnerability in comments.php in LushiNews 1.01 and earlier allows remote authenticated users to inject arbitrary SQL commands via the id parameter.

Date published : 2007-02-08

http://www.securityfocus.com/bid/22469

https://www.exploit-db.com/exploits/3287