Vulnerabilities > Rha7 Downloads > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-04-18 | CVE-2007-2107 | SQL-Injection vulnerability in Rha7 Downloads Rha7 Downloads 1.0 SQL injection vulnerability in visit.php in the Rha7 Downloads (rha7downloads) 1.0 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the cid parameter, a different vector than CVE-2007-1960. | 7.5 |