CVE

Id
28418  
CVE No.
CVE-2007-5061  
Status
Candidate  
Description
SQL injection vulnerability in mods/banners/navlist.php in Clansphere 2007.4 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter to index.php in a banners action.  
Phase
Assigned (20070924)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
295323 28418 CVE-2007-5061 MILW0RM:4443  View
295324 28418 CVE-2007-5061 URL:http://www.milw0rm.com/exploits/4443  View
295325 28418 CVE-2007-5061 BID:25770  View
295326 28418 CVE-2007-5061 URL:http://www.securityfocus.com/bid/25770  View
295327 28418 CVE-2007-5061 VUPEN:ADV-2007-3249  View
295328 28418 CVE-2007-5061 URL:http://www.vupen.com/english/advisories/2007/3249  View
295329 28418 CVE-2007-5061 OSVDB:37260  View
295330 28418 CVE-2007-5061 URL:http://osvdb.org/37260  View
295331 28418 CVE-2007-5061 SECUNIA:26940  View
295332 28418 CVE-2007-5061 URL:http://secunia.com/advisories/26940  View
295333 28418 CVE-2007-5061 XF:clansphere-index-sql-injection(36744)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
53989 JVNDB-2007-002681 Adam Scheinberg Flip におけるログイン資格情報を含むファイルをダウンロードされる脆弱性 Adam Scheinberg Flip は、不十分なアクセスコントロールで Web ルートに重要なファイルを保存するため、ログイン資格情報を含むファイルをダウンロードされる脆弱性が存在します。 CVE-2007-5063 28418 5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-002681.html  View