2 matches found
XOOPS Module MyConference SQL Injection (CVE-2007-2737)
An SQL injection vulnerability has been reported in Xoops Myconference Module. An attacker could exploit this vulnerability via the cid parameter. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
CVE-2007-2737
Summary (CVE-2007-2737) : The XOOPS MyConference 1.0 module contains an SQL injection in index.php exploitable via the cid parameter. The issue allows a remote attacker to execute arbitrary SQL commands against the underlying database. This is reported in multiple sources (NVD entry and Checkpoin...