• info
• discussion
• exploit
• solution
• references

Video Share Enterprise CVE-2007-2018 SQL-Injection Vulnerability

Video Share Enterprise is prone to a sql-injection vulnerability. SQL injection vulnerability in msg.php in AlstraSoft Video Share Enterprise allows remote authenticated users to execute arbitrary SQL commands via the id parameter.