CyberSec.Space Logo
返回 CVE 浏览器

CVE-2007-3415

HIGH
7.5
CVSS Severity Score
EPSS Score0.1760%
EPSS Percentile20.21th
Published2007年6月26日
Last Modified2026年4月23日

Vulnerability Description

Multiple SQL injection vulnerabilities in index.php in phpRaider 1.0.0 rc8 allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) type parameter.

Affected Platforms (CPE)

📦
Phpraider

Phpraider

= 1.0.0_rc8

References & Advisories

🔗 http://osvdb.org/38222
🔗 http://pridels-team.blogspot.com/2007/06/phpraider-sql-vuln.html
🔗 http://www.securityfocus.com/bid/24593
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/35004
🔗 http://osvdb.org/38222
🔗 http://pridels-team.blogspot.com/2007/06/phpraider-sql-vuln.html
🔗 http://www.securityfocus.com/bid/24593
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/35004

相关漏洞威胁

CVE-2008-248110.0

PHP remote file inclusion vulnerability in authentication/phpbb3/phpbb3.functions.php in phpRaider 1.0.7 and 1.0.7a, when register...

CVE-2008-27697.5

PHP remote file inclusion vulnerability in authentication/smf/smf.functions.php in Simple Machines phpRaider 1.0.6 and 1.0.7 allow...

CVE-2008-70354.3

Cross-site scripting (XSS) vulnerability in an unspecified component in Simple Machines phpRaider 1.0.7 allows remote attackers to...

CVE-2007-173310.0

Buffer overflow in InterVations NaviCOPA HTTP Server 2.01 allows remote attackers to execute arbitrary code via a long (1) /cgi-bi...