CVE-2008-5000 in PHPX
Zusammenfassung
von MITRE
SQL injection vulnerability in admin/includes/news.inc.php in PHPX 3.5.16, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via uppercase characters in the news_id parameter.
If you want to get best quality of vulnerability data, you may have to visit VulDB.