CVE-2007-1816

Xoops Tutoriais Module - SQL Injection

Title source: rule

Description

SQL injection vulnerability in viewcat.php in the Tutoriais module for Xoops allows remote attackers to execute arbitrary SQL commands via the cid parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by ajann · perlwebappsphp
https://www.exploit-db.com/exploits/3621

References (4)

Scores

EPSS 0.0068
EPSS Percentile 71.2%

Classification

Status draft

Affected Products (1)

xoops/tutoriais_module

Timeline

Published Apr 02, 2007
Tracked Since Feb 18, 2026