CVE-2007-1296

AJ Classifieds 1.0 - SQL Injection

Title source: llm

Description

SQL injection vulnerability in postingdetails.php in AJ Classifieds 1.0 allows remote attackers to execute arbitrary SQL commands via the postingid parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by ajann · htmlwebappsphp

https://www.exploit-db.com/exploits/3410

View Code ZIP pw:eip

References (5)

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/3410

[Exploit] http://www.securityfocus.com/bid/22808

[Third Party Advisory, VDB Entry] http://osvdb.org/35452

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/32786

[Third Party Advisory] http://www.vupen.com/english/advisories/2007/0833

Scores

EPSS 0.0142

EPSS Percentile 80.6%

Details

Status published

Products (1)

aj_square/aj_classifieds 1.0

Published Mar 07, 2007

Tracked Since Feb 18, 2026