Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4359

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2007-4359
Last Modified 15 Nov 2008 01:56:42
Published 15 Aug 2007 03:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4359

Summary

Multiple SQL injection vulnerabilities in SkilMatch Staffing Systems JobLister3 allow remote attackers to execute arbitrary SQL commands via (1) the search form or (2) the jobid parameter to index.php in a showbyID action.

Vulnerable Systems

Application

  • Skilmatch Staffing Systems Joblister3


References

BID - 25296

BUGTRAQ - 20070813 JobLister3 SQL injection vulnerabilities

OSVDB - 36416

XF - joblister3-index-sql-injection(36052)

SREASON - 3013

SECUNIA - 26440


Last Updated: 27 May 2016 10:45:50