EDB-4678
webappsphpVERIFIED
Seditio CMS 121 - SQL Injection
CVE-2007-6202
InATeam11/29/2007
CVE-2007-6202
NONESQL injection vulnerability in plugins/search/search.php in Neocrome Seditio CMS 121 and earlier allows remote attackers to execute arbitrary SQL commands via the pag_sub[] parameter to plug.php.
Published: 12/1/2007Updated: 4/9/2025
Description
SQL injection vulnerability in plugins/search/search.php in Neocrome Seditio CMS 121 and earlier allows remote attackers to execute arbitrary SQL commands via the pag_sub[] parameter to plug.php.
AI AnalysisPowered by AI
Affected Products
neocromeseditio
Available Exploits (1)
References
- http://osvdb.org/38924
- http://secunia.com/advisories/27881Vendor Advisory
- http://www.neocrome.net/page.php?id=2349Patch
- http://www.securityfocus.com/bid/26655Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38774
- https://www.exploit-db.com/exploits/4678
- http://osvdb.org/38924
- http://secunia.com/advisories/27881Vendor Advisory
- http://www.neocrome.net/page.php?id=2349Patch
- http://www.securityfocus.com/bid/26655Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38774
- https://www.exploit-db.com/exploits/4678