Vulnerabilities > CVE-2007-1289 - Input Validation vulnerability in Tyger BUG Tracking System 1.1.3
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
SQL injection vulnerability in ViewBugs.php in Tyger Bug Tracking System (TygerBT) 1.1.3 allows remote attackers to execute arbitrary SQL commands via the s parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Tyger Bug Tracking System 1.1.3 ViewBugs.php s Variable SQL. CVE-2007-1289. Webapps exploit for php platform |
| id | EDB-ID:29703 |
| last seen | 2016-02-03 |
| modified | 2007-02-26 |
| published | 2007-02-26 |
| reporter | CorryL |
| source | https://www.exploit-db.com/download/29703/ |
| title | Tyger Bug Tracking System 1.1.3 ViewBugs.php s Variable SQL |
References
- http://osvdb.org/35817
- http://secunia.com/advisories/24385
- http://securityreason.com/securityalert/2356
- http://www.securityfocus.com/archive/1/461801/100/0/threaded
- http://www.securityfocus.com/bid/22799
- http://www.vupen.com/english/advisories/2007/0822
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32791