EDB-4805
webappsphpVERIFIED
NoseRub 0.5.2 - Login SQL Injection
CVE-2007-6602
Felix Groebert12/28/2007
CVE-2007-6602
NONESQL injection vulnerability in app/models/identity.php in NoseRub 0.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the username field to the login script.
Published: 12/31/2007Updated: 4/9/2025
Description
SQL injection vulnerability in app/models/identity.php in NoseRub 0.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the username field to the login script.
AI AnalysisPowered by AI
Affected Products
noserubnoserub
Available Exploits (1)
References
- http://noserub.googlecode.com/svn/trunk/app/models/identity.phpExploit
- http://osvdb.org/39832
- http://seclog.de/pub/seclog-2007-001.txtExploitPatch
- http://secunia.com/advisories/28259
- http://www.securityfocus.com/bid/27065
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39318
- https://www.exploit-db.com/exploits/4805
- http://noserub.googlecode.com/svn/trunk/app/models/identity.phpExploit
- http://osvdb.org/39832
- http://seclog.de/pub/seclog-2007-001.txtExploitPatch
- http://secunia.com/advisories/28259
- http://www.securityfocus.com/bid/27065
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39318
- https://www.exploit-db.com/exploits/4805