AdMan 1.1.20070907 - Authenticated SQL Injection via editCampaign.php campaignId Parameter
SQL injection vulnerability in editCampaign.php in AdMan 1.1.20070907 allows remote authenticated users to execute arbitrary SQL commands via the campaignId parameter.