CVE-2007-1231
SQLiteManager 1.2.0 - XSS
Title source: llmDescription
Multiple cross-site scripting (XSS) vulnerabilities in SQLiteManager 1.2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) database name, (2) table name, (3) ViewName, (4) view, (5) trigger, and (6) function fields in main.php and certain other files.
Exploits (2)
exploitdb
WRITEUP
VERIFIED
by Hadi Kiamarsi · textwebappsphp
https://www.exploit-db.com/exploits/33154
exploitdb
WORKING POC
VERIFIED
by Simon Bonnard · htmlwebappsphp
https://www.exploit-db.com/exploits/29680
References (5)
Scores
EPSS
0.0192
EPSS Percentile
83.4%
Details
CWE
CWE-79
Status
published
Products (1)
sqlitemanager/sqlitemanager
1.2.0
Published
Mar 03, 2007
Tracked Since
Feb 18, 2026