Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6559

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-6559
Last Modified 02 Apr 2009 01:28:37
Published 27 Dec 2007 07:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-6559

Summary

Multiple SQL injection vulnerabilities in Logaholic before 2.0 RC8 allow remote attackers to execute arbitrary SQL commands via (1) the from parameter to index.php or (2) the page parameter to update.php.

Vulnerable Systems

Application

  • Logaholic 0


References

BID - 27003

BUGTRAQ - 20080326 Re: Logaholic Web Analytics Software

BUGTRAQ - 20071223 Logaholic Web Analytics Software

OSVDB - 39791

OSVDB - 39790

SREASON - 3496

SECUNIA - 28263


Last Updated: 27 May 2016 10:46:32