Vulnerabilities > CVE-2007-1077 - SQL Injection vulnerability in Design4Online Userpages2 2.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
design4online
exploit available

Summary

SQL injection vulnerability in page.asp in Design4Online UserPages2 2.0 allows remote attackers to execute arbitrary SQL commands via the art_id parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Configurations

Part Description Count
Application
Design4Online
1

Exploit-Db

descriptionDesign4Online Userpages2 Page.ASP SQL Injection Vulnerability. CVE-2007-1077. Webapps exploit for asp platform
idEDB-ID:29622
last seen2016-02-03
modified2007-02-20
published2007-02-20
reporterxoron
sourcehttps://www.exploit-db.com/download/29622/
titleDesign4Online Userpages2 Page.ASP SQL Injection Vulnerability