EDB-4708
webappsphpVERIFIED
DWdirectory 2.1 - SQL Injection
CVE-2007-6392
t0pP8uZz12/9/2007
CVE-2007-6392
NONESQL injection vulnerability in DWdirectory 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the search parameter to the /search URI.
Published: 12/17/2007Updated: 4/9/2025
Description
SQL injection vulnerability in DWdirectory 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the search parameter to the /search URI.
AI AnalysisPowered by AI
Affected Products
dominion_webdwdirectory
Available Exploits (1)
References
- http://secunia.com/advisories/27990
- http://www.securityfocus.com/bid/26779Exploit
- http://www.vupen.com/english/advisories/2007/4177
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38938
- https://www.exploit-db.com/exploits/4708
- http://secunia.com/advisories/27990
- http://www.securityfocus.com/bid/26779Exploit
- http://www.vupen.com/english/advisories/2007/4177
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38938
- https://www.exploit-db.com/exploits/4708