Vulnerabilities > CVE-2007-3824 - SQL Injection vulnerability in MzK Blog Katgoster.ASP

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

critical

exploit available

NVD

Published: 2007-07-17

Updated: 2017-07-29

Summary

SQL injection vulnerability in katgoster.asp in MzK Blog (tr) allows remote attackers to execute arbitrary SQL commands via the katID parameter.

Part	Description	Count
Application	Mehmet_Zati_Karahan Mehmet Zati Karahan MZK Blog *	1

description	MzK Blog Katgoster.ASP SQL Injection Vulnerability. CVE-2007-3824. Webapps exploit for asp platform
id	EDB-ID:30300
last seen	2016-02-03
modified	2007-03-23
published	2007-03-23
reporter	GeFORC3
source	https://www.exploit-db.com/download/30300/
title	MzK Blog Katgoster.ASP SQL Injection Vulnerability