CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2007-4716
https://notcve.org/view.php?id=CVE-2007-4716
Multiple SQL injection vulnerabilities in PHD Help Desk before 1.31 allow remote attackers to execute arbitrary SQL commands via unspecified vectors. Múltiples vulnerabilidades de inyección SQL en PHD Help Desk before 1.31 permite a atacantes remotos ejecutar comandos sql de su elección mediante vectores no especificados. • http://secunia.com/advisories/26688 http://sourceforge.net/forum/forum.php?forum_id=731460 http://sourceforge.net/project/shownotes.php?release_id=536503 http://sourceforge.net/project/shownotes.php?release_id=536503&group_id=170208 http://www.osvdb.org/36789 http://www.securityfocus.com/bid/25517 http://www.vupen.com/english/advisories/2007/3039 https://exchange.xforce.ibmcloud.com/vulnerabilities/36431 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •