CVE-2007-4892

2007-09-14T14:17:00
ID CVE-2007-4892
Type cve
Reporter NVD
Modified 2017-07-28T21:33:16

Description

Multiple SQL injection vulnerabilities in SWSoft Plesk 7.6.1, 8.1.0, 8.1.1, and 8.2.0 for Windows allow remote attackers to execute arbitrary SQL commands via a PLESKSESSID cookie to (1) login.php3 or (2) auth.php3.