CVE

Id
26357  
CVE No.
CVE-2007-3000  
Status
Candidate  
Description
Multiple SQL injection vulnerabilities in PHP JackKnife (PHPJK) allow remote attackers to execute arbitrary SQL commands via (1) the iCategoryUnq parameter to G_Display.php or (2) the iSearchID parameter to Search/DisplayResults.php.  
Phase
Assigned (20070604)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
266945 26357 CVE-2007-3000 BUGTRAQ:20070530 PHP JackKnife [multiple vulnerabilities]  View
266946 26357 CVE-2007-3000 URL:http://www.securityfocus.com/archive/1/archive/1/470111/100/0/threaded  View
266947 26357 CVE-2007-3000 BID:24253  View
266948 26357 CVE-2007-3000 URL:http://www.securityfocus.com/bid/24253  View
266949 26357 CVE-2007-3000 OSVDB:36319  View
266950 26357 CVE-2007-3000 URL:http://osvdb.org/36319  View
266951 26357 CVE-2007-3000 OSVDB:36318  View
266952 26357 CVE-2007-3000 URL:http://osvdb.org/36318  View
266953 26357 CVE-2007-3000 SECUNIA:25487  View
266954 26357 CVE-2007-3000 URL:http://secunia.com/advisories/25487  View
266955 26357 CVE-2007-3000 SREASON:2768  View
266956 26357 CVE-2007-3000 URL:http://securityreason.com/securityalert/2768  View
266957 26357 CVE-2007-3000 XF:phpjk-gdisplay-displayresults-sql-injection(34641)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
55253 JVNDB-2007-003945 PHPJK における重要な情報を取得される脆弱性 PHP JackKnife (PHPJK) は、エラーメッセージにパスを表示する不備があるため、重要な情報を取得される脆弱性が存在します。 CVE-2007-3002 26357 5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-003945.html  View