Mihalism · Mihalism Multi Host · CVE-2008-0714
**Name of the Vulnerable Software and Affected Versions**
Mihalism Multi Host (affected versions not specified)
**Description**
The issue allows remote attackers to execute arbitrary SQL commands via the `username` parameter in a "lost password go" action. This is related to a SQL injection vulnerability in the users.php file.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.