Back to search
CVE-2007-6345
Published: Dec 13, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
SQL injection vulnerability in aurora framework before 20071208 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly the value parameter to the pack_var function in module/db.lib/db_mysql.lib. NOTE: some of these details are obtained from third party information.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
auroraframework-dbmysql-sql-injection(38999)
vdb-entry
x_refsource_XF
http://sourceforge.net/project/shownotes.php?release_id=560073
x_refsource_CONFIRM
26829
vdb-entry
x_refsource_BID
28014
third-party-advisory
x_refsource_SECUNIA
39145
vdb-entry
x_refsource_OSVDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now