Vulnerabilities > CVE-2007-3003 - Unspecified vulnerability in Mywebland Mybloggie
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN mywebland
exploit available
Summary
Multiple SQL injection vulnerabilities in myBloggie 2.1.6 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) cat_id or (2) year parameter to index.php in a viewuser action, different vectors than CVE-2005-1500 and CVE-2005-4225.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | MyBloggie 2.1.x Index.PHP Multiple SQL Injection Vulnerabilities. CVE-2007-3003. Webapps exploit for php platform |
| id | EDB-ID:30111 |
| last seen | 2016-02-03 |
| modified | 2007-05-31 |
| published | 2007-05-31 |
| reporter | [email protected] |
| source | https://www.exploit-db.com/download/30111/ |
| title | MyBloggie 2.1.x Index.PHP Multiple SQL Injection Vulnerabilities |
References
- http://osvdb.org/38345
- http://osvdb.org/38345
- http://securityreason.com/securityalert/2769
- http://securityreason.com/securityalert/2769
- http://www.securityfocus.com/archive/1/470112/100/0/threaded
- http://www.securityfocus.com/archive/1/470112/100/0/threaded
- http://www.securityfocus.com/bid/24249
- http://www.securityfocus.com/bid/24249
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34627
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34627