Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6580

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-6580
Last Modified 15 Nov 2008 02:05:23
Published 28 Dec 2007 04:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-6580

Summary

Multiple SQL injection vulnerabilities in Wallpaper Site 1.0.09 allow remote attackers to execute arbitrary SQL commands via (1) the catid parameter to category.php or (2) the groupid parameter to editadgroup.php.

Vulnerable Systems

Application

  • Wallpaper Complete Website 1.0.09


References

BID - 26984

MILW0RM - 4770

OSVDB - 40369

OSVDB - 40368


Last Updated: 27 May 2016 10:46:32