CVE-2007-0826

Kisisel Site 2007 - SQL Injection

Title source: llm
STIX 2.1

Description

SQL injection vulnerability in forum.asp in Kisisel Site 2007 allows remote attackers to execute arbitrary SQL commands via the forumid parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by cl24zy · textwebappsphp
https://www.exploit-db.com/exploits/3278

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/32422
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/3278
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/0510
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/35831
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/22435

Scores

EPSS 0.0092
EPSS Percentile 76.2%

Details

Status published
Products (1)
kisisel_site_2007/kisisel_site_forum.asp
Published Feb 07, 2007
Tracked Since Feb 18, 2026