CVE-2008-3374

SQL injection vulnerability in ajax.php in Gregarius 0.5.4 and earlier allows remote attackers to execute arbitrary SQL commands via the rsargs array parameter in an __exp__getFeedContent action.

Date published : 2008-07-30

http://www.securityfocus.com/bid/30423

http://www.securityfocus.com/archive/1/494866/100/0/threaded