Vulnerabilities > CVE-2007-4085 - Unspecified vulnerability in Alstrasoft Askme PRO

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
alstrasoft
exploit available

Summary

Multiple SQL injection vulnerabilities in AlstraSoft AskMe Pro allow remote attackers to execute arbitrary SQL commands via the (1) que_id parameter to forum_answer.php or (2) the cat_id parameter to search.php.

Vulnerable Configurations

Part Description Count
Application
Alstrasoft
1

Exploit-Db

descriptionAskMe Pro 2.1 (que_id) SQL Injection Vulnerability. CVE-2007-4085. Webapps exploit for php platform
idEDB-ID:12372
last seen2016-02-01
modified2010-04-24
published2010-04-24
reporterv3n0m
sourcehttps://www.exploit-db.com/download/12372/
titleAskMe Pro 2.1 que_id SQL Injection Vulnerability