QwikSec

Security Database

CVE

CWE

Training

CVE-2007-4056

Published: Jul 30, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

SQL injection vulnerability in directory.php in Prozilla Adult Directory allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a list action. NOTE: the original report indicated that this was the "photo" SourceForge project (aka Maan Bsat Photo Collection), but that was incorrect.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

exploit

x_refsource_EXPLOIT-DB

Adultdirectory-directory-sql-injection(35683)

vdb-entry

x_refsource_XF

20070730 Adult Directory - site-specific?

mailing-list

x_refsource_VIM

vdb-entry

x_refsource_BID

vdb-entry

x_refsource_VUPEN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.