CVE		CVE-2007-1135
Статус		Candidate
Описание		Multiple SQL injection vulnerabilities in WebMplayer before 0.6.1-Alpha allow remote attackers to execute arbitrary SQL commands via the (1) strid parameter to index.php and the (2) id[0] or other id array index parameter to filecheck.php.
Важность		Medium
CVSS score		5,6
CVSS vector		(AV:R/AC:H/Au:NR/C:P/I:P/A:P/B:N)
Phase		Assigned (27.02.2007)
NVD:		http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-1135
References		BID : 22726
		CONFIRM : http://sourceforge.net/project/shownotes.php?relea...
		FRSIRT : ADV-2007-0742
SecurityVulns:		Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl )