EDB-30886
webappsphpVERIFIED
MKPortal 1.1 Gallery Module - SQL Injection
CVE-2007-6467
Sw33t h4cK3r12/13/2007
CVE-2007-6467
NONESQL injection vulnerability in index.php in MKPortal 1.1 RC1 allows remote attackers to execute arbitrary SQL commands via the ida parameter in a gallery foto_show action.
Опубликовано: 12/20/2007Обновлено: 4/9/2025
Описание
SQL injection vulnerability in index.php in MKPortal 1.1 RC1 allows remote attackers to execute arbitrary SQL commands via the ida parameter in a gallery foto_show action.
ИИ-АнализНа базе ИИ
Затронутые продукты
mkportalmkportal
1.1_rc1
Доступные эксплойты (1)
Ссылки
- http://securityreason.com/securityalert/3465
- http://www.securityfocus.com/archive/1/485035/100/0/threaded
- http://www.securityfocus.com/bid/26860Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39027
- http://securityreason.com/securityalert/3465
- http://www.securityfocus.com/archive/1/485035/100/0/threaded
- http://www.securityfocus.com/bid/26860Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39027