CVE-2008-6633

Description

SQL injection vulnerability in RoomPHPlanning 1.5 allows remote attackers to execute arbitrary SQL commands via the idresa parameter to resaopen.php.

Affected products

• beaussier / roomphplanning1.5 – 1.5

References

• VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2008/1647
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/42626
• MISChttp://www.securityfocus.com/bid/29354
• MISChttp://osvdb.org/45604
• EXPLOIThttps://www.exploit-db.com/exploits/5670
• VENDOR_ADVISORYhttp://secunia.com/advisories/30376