CVE-2007-4845

2007-09-1220:00:00

mitre

www.cve.org

8.5 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

43.0%

JSON

Multiple SQL injection vulnerabilities in UPLOAD/index.php in RW::Download 2.0.3 lite allow remote attackers to execute arbitrary SQL commands via the (1) dlid or (2) cid parameter.

References

osvdb.org/37077

www.securityfocus.com/bid/25589

www.exploit-db.com/exploits/4371