Vulnerabilities > CVE-2007-3520 - Unspecified vulnerability in Easybe 1-2-3 Music Store
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN easybe
exploit available
Summary
SQL injection vulnerability in process.php in Easybe 1-2-3 Music Store allows remote attackers to execute arbitrary SQL commands via the CategoryID parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Easybe 1-2-3 Music Store (process.php) Remote SQL Injection Vuln. CVE-2007-3520. Webapps exploit for php platform |
| file | exploits/php/webapps/4134.txt |
| id | EDB-ID:4134 |
| last seen | 2016-01-31 |
| modified | 2007-07-01 |
| platform | php |
| port | |
| published | 2007-07-01 |
| reporter | t0pP8uZz |
| source | https://www.exploit-db.com/download/4134/ |
| title | Easybe 1-2-3 Music Store process.php Remote SQL Injection Vuln |
| type | webapps |
References
- http://osvdb.org/36355
- http://osvdb.org/36355
- http://secunia.com/advisories/25901
- http://secunia.com/advisories/25901
- http://www.securityfocus.com/bid/24723
- http://www.securityfocus.com/bid/24723
- http://www.vupen.com/english/advisories/2007/2406
- http://www.vupen.com/english/advisories/2007/2406
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35196
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35196
- https://www.exploit-db.com/exploits/4134
- https://www.exploit-db.com/exploits/4134