CyberSec.Space Logo
CVEブラウザに戻る

CVE-2007-3415

HIGH
7.5
CVSS Severity Score
EPSS Score0.1760%
EPSS Percentile20.21th
Published2007年6月26日
Last Modified2026年4月23日

Vulnerability Description

Multiple SQL injection vulnerabilities in index.php in phpRaider 1.0.0 rc8 allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) type parameter.

Affected Platforms (CPE)

📦
Phpraider

Phpraider

= 1.0.0_rc8

References & Advisories

🔗 http://osvdb.org/38222
🔗 http://pridels-team.blogspot.com/2007/06/phpraider-sql-vuln.html
🔗 http://www.securityfocus.com/bid/24593
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/35004
🔗 http://osvdb.org/38222
🔗 http://pridels-team.blogspot.com/2007/06/phpraider-sql-vuln.html
🔗 http://www.securityfocus.com/bid/24593
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/35004

関連する脆弱性情報

CVE-2008-248110.0

PHP remote file inclusion vulnerability in authentication/phpbb3/phpbb3.functions.php in phpRaider 1.0.7 and 1.0.7a, when register...

CVE-2008-27697.5

PHP remote file inclusion vulnerability in authentication/smf/smf.functions.php in Simple Machines phpRaider 1.0.6 and 1.0.7 allow...

CVE-2008-70354.3

Cross-site scripting (XSS) vulnerability in an unspecified component in Simple Machines phpRaider 1.0.7 allows remote attackers to...

CVE-2007-182210.0

Alcatel-Lucent Lucent Technologies voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailbo...