CVE-2008-2189

SQL injection vulnerability in viewfaqs.php in AnServ Auction XL allows remote attackers to execute arbitrary SQL commands via the cat parameter.

Date published : 2008-05-14

http://www.securityfocus.com/bid/29053

http://www.securityfocus.com/archive/1/491608/100/0/threaded