SQL injection vulnerability in stylesheet.php in CMS Made Simple 1.0.5 and earlier allows remote attackers to execute arbitrary SQL commands via the templateid parameter.
References
Configurations
History
21 Nov 2024, 00:30
Type | Values Removed | Values Added |
---|---|---|
References | () http://blog.cmsmadesimple.org/2007/04/24/cms-made-simple-106-released/ - Patch | |
References | () http://osvdb.org/35744 - | |
References | () http://secunia.com/advisories/25082 - Vendor Advisory | |
References | () http://www.scanit.be/advisory-2007-05-02.html - Exploit, Vendor Advisory | |
References | () http://www.securityfocus.com/bid/23753 - Exploit | |
References | () http://www.vupen.com/english/advisories/2007/1628 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/34044 - |
Information
Published : 2007-05-02 23:19
Updated : 2024-11-21 00:30
NVD link : CVE-2007-2473
Mitre link : CVE-2007-2473
CVE.ORG link : CVE-2007-2473
JSON object : View
Products Affected
cmsmadesimple
- cms_made_simple
CWE