SQL injection vulnerability in index.php in the MyAds 2.04jp and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the cid parameter, different vectors than CVE-2006-3341.
References
Link | Resource |
---|---|
http://osvdb.org/37372 | |
http://www.securityfocus.com/bid/23212 | Exploit Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/33334 | |
https://www.exploit-db.com/exploits/3603 |
Configurations
History
No history.
Information
Published : 2007-04-03 16:19
Updated : 2024-02-28 11:01
NVD link : CVE-2007-1846
Mitre link : CVE-2007-1846
CVE.ORG link : CVE-2007-1846
JSON object : View
Products Affected
xoops
- malaika_system_myads_module
CWE