CVE-2007-3631

2007-07-1000:00:00

mitre

www.cve.org

8.4 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

82.7%

JSON

SQL injection vulnerability in index.php in GameSiteScript (gss) 3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the params parameter, related to missing input validation of the id field.

References

osvdb.org/36362

secunia.com/advisories/25983

www.securityfocus.com/bid/24807

www.vupen.com/english/advisories/2007/2460

exchange.xforce.ibmcloud.com/vulnerabilities/35292

www.exploit-db.com/exploits/4159