SQL injection vulnerability in the login page in phphelpdesk 0.6.16 allows remote attackers to execute arbitrary SQL commands via unspecified parameters related to the "login procedures."
References
Configurations
History
21 Nov 2024, 00:38
Type | Values Removed | Values Added |
---|---|---|
References | () http://securityreason.com/securityalert/3359 - | |
References | () http://www.securityfocus.com/archive/1/483256/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/26319 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/38260 - |
Information
Published : 2007-11-10 02:46
Updated : 2024-11-21 00:38
NVD link : CVE-2007-5916
Mitre link : CVE-2007-5916
CVE.ORG link : CVE-2007-5916
JSON object : View
Products Affected
phphelpdesk
- phphelpdesk
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')