PHP Basic Multiple Vulnerabilities by Xcross87 & Alucar Key Information: Date: 2007.10.25 Risk: High Credit: Xcross87 Remote: Yes CVE: CVE-2007-5678 CWE: N/A Affected Software: Software: phpBasic Music Module Homepage: http://phpbasic.com/ Vulnerabilities: 1. SQL Injection by Xcross87: - Proof of Concept: - - Exploit Admin User Account: - 2. RFI by Alucar: - Exploit: - Additional Information: Note: This note is in RAW Version Contributors: Xcross87, Alucar