Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4952


Vulnerability Score 7.5 7.5
CVE Id CVE-2007-4952
Last Modified 05 Sep 2008 05:29:30
Published 18 Sep 2007 04:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



SQL injection vulnerability in article.php in OmniStar Article Manager allows remote attackers to execute arbitrary SQL commands via the page_id parameter in a favorite op action, a different vector than CVE-2006-5917.

Vulnerable Systems


  • Omnistar Interactive Omnistar Article Manager


MILW0RM - 4418

BID - 25692

Last Updated: 27 May 2016 10:46:01