Vulnerabilities > CVE-2007-2738 - SQL Injection vulnerability in XOOPS Module Glossarie Glossaire-P-F.PHP
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
SQL injection vulnerability in glossaire-p-f.php in the Glossaire 1.7 and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the sid parameter in an ImprDef action.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | XOOPS Module Glossarie <= 1.7 (sid) Remote SQL Injection Exploit. CVE-2007-2738. Webapps exploit for php platform |
file | exploits/php/webapps/3932.pl |
id | EDB-ID:3932 |
last seen | 2016-01-31 |
modified | 2007-05-15 |
platform | php |
port | |
published | 2007-05-15 |
reporter | ajann |
source | https://www.exploit-db.com/download/3932/ |
title | XOOPS Module Glossarie <= 1.7 sid Remote SQL Injection Exploit |
type | webapps |