Description

SQL injection vulnerability in e107 before 0.7.5 allows remote attackers to execute arbitrary SQL commands via unknown attack vectors.

Remediation

References

CVE-2006-2590

Related Vulnerabilities

WordPress Plugin Booking Calendar Cross-Site Request Forgery (9.2.1)

WordPress Plugin Resume Submissions & Job Postings Arbitrary File Upload (2.5.3)

WordPress Plugin ComicPress Manager 'lang' Parameter Cross-Site Scripting (1.4.9.9)

Django Numeric Errors Vulnerability (CVE-2013-0306)

Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-2710)

Severity

Medium

Classification

CVE-2006-2590

Tags

Missing Update Known Vulnerabilities