Vulnerabilities > CVE-2007-3573 - SQL-Injection vulnerability in Akocomment
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL network
akocomment
Summary
Multiple SQL injection vulnerabilities in akocomment allow remote attackers to execute arbitrary SQL commands via the (1) acparentid or (2) acitemid parameter to an unspecified component, different vectors than CVE-2006-1421.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |