CVE-2007-0631

Eclectic Designs Cascadianfaq < 4.1 - SQL Injection

Title source: rule

Description

SQL injection vulnerability in index.php in Eclectic Designs CascadianFAQ 4.1 and earlier allows remote attackers to execute arbitrary SQL commands via the catid parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by ajann · textwebappsphp

https://www.exploit-db.com/exploits/3227

View Code ZIP pw:eip

References (6)

Core 6

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/31968

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/3227

Third Party Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2007/0424

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/23965

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/31675

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/22314

Scores

EPSS 0.0318

EPSS Percentile 87.0%

Details

Status published

Products (1)

eclectic_designs/cascadianfaq < 4.1

Published Jan 31, 2007

Tracked Since Feb 18, 2026