h4si

1 exploit Active since Jul 2007
CVE-2007-3808 EXPLOITDB text WORKING POC
paFileDB 3.6 - SQL Injection via categories[] Parameter
SQL injection vulnerability in includes/search.php in paFileDB 3.6 allows remote attackers to execute arbitrary SQL commands via the categories[] parameter in a search action to index.php, a different vector than CVE-2005-2000.