Vulnerabilities > CVE-2007-3609 - SQL Injection vulnerability in Emeeting Online Dating Software 5.2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Multiple SQL injection vulnerabilities in eMeeting Online Dating Software 5.2 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) b.php and (2) account/gallery.php, and other unspecified vectors.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | eMeeting Online Dating Software 5.2 SQL Injection Vulnerabilities. CVE-2007-3609. Webapps exploit for php platform |
| file | exploits/php/webapps/4154.txt |
| id | EDB-ID:4154 |
| last seen | 2016-01-31 |
| modified | 2007-07-06 |
| platform | php |
| port | |
| published | 2007-07-06 |
| reporter | t0pP8uZz |
| source | https://www.exploit-db.com/download/4154/ |
| title | eMeeting Online Dating Software 5.2 - SQL Injection Vulnerabilities |
| type | webapps |
References
- http://osvdb.org/36363
- http://osvdb.org/36364
- http://secunia.com/advisories/25974
- http://www.securityfocus.com/bid/24786
- http://www.vupen.com/english/advisories/2007/2448
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35274
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35275
- https://www.exploit-db.com/exploits/4154