CVE-2008-6324

UNRATEDJSON export Create alert

Description

SQL injection vulnerability in forummessages.cfm in CF_Forum allows remote attackers to execute arbitrary SQL commands via the categorynbr parameter.

Affected products

cfmsource / cf_forum

References

VENDOR_ADVISORYhttp://secunia.com/advisories/33064
EXPLOIThttps://www.exploit-db.com/exploits/7416
MISChttp://www.securityfocus.com/bid/32767