CyberSec.Space Logo
返回 CVE 浏览器

CVE-2014-8340

HIGH
7.5
CVSS Severity Score
EPSS Score0.1560%
EPSS Percentile27.06th
Published2014年12月16日
Last Modified2026年5月6日

Vulnerability Description

SQL injection vulnerability in Php/Functions/log_function.php in phpTrafficA 2.3 and earlier allows remote attackers to execute arbitrary SQL commands via a User-Agent HTTP header.

Affected Platforms (CPE)

📦
Zoneo Soft

Phptraffica

<= 2.2.1

References & Advisories

🔗 http://packetstormsecurity.com/files/129445/phpTrafficA-2.3-SQL-Injection.html
🔗 http://www.securityfocus.com/archive/1/534184/100/0/threaded
🔗 http://packetstormsecurity.com/files/129445/phpTrafficA-2.3-SQL-Injection.html
🔗 http://www.securityfocus.com/archive/1/534184/100/0/threaded

相关漏洞威胁

CVE-2007-364710.0

The isloggedin function in Php/login.inc.php in phpTrafficA 1.4.3 and earlier allows remote attackers to bypass authentication and...

CVE-2007-34287.5

Multiple unspecified vulnerabilities in phpTrafficA before 1.4.2 allow remote attackers to have an unknown impact via the file par...

CVE-2007-10767.5

Multiple directory traversal vulnerabilities in phpTrafficA 1.4.1, and possibly earlier, allow remote attackers to include arbitra...

CVE-2007-34277.5

SQL injection vulnerability in index.php in phpTrafficA 1.4.2 and earlier allows remote attackers to execute arbitrary SQL command...