Vulnerabilities > CVE-2007-1607 - Input Validation vulnerability in W-Agora 4.2.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
search.php in w-Agora (Web-Agora) allows remote attackers to obtain potentially sensitive information via a ' (quote) value followed by certain SQL sequences in the (1) search_forum or (2) search_user parameter, which force a SQL error.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |