Back to search
CVE-2007-4892
Published: Sep 14, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple SQL injection vulnerabilities in SWSoft Plesk 7.6.1, 8.1.0, 8.1.1, and 8.2.0 for Windows allow remote attackers to execute arbitrary SQL commands via a PLESKSESSID cookie to (1) login.php3 or (2) auth.php3.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
26741
third-party-advisory
x_refsource_SECUNIA
20070911 RE: ScanAlert Security Advisory
mailing-list
x_refsource_BUGTRAQ
37009
vdb-entry
x_refsource_OSVDB
plesk-plesksessid-sql-injection(36580)
vdb-entry
x_refsource_XF
http://kb.swsoft.com/en/2159
x_refsource_CONFIRM
25646
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now