CVE-2007-1838
Xoops Friendfinder Module < 3.3 - SQL Injection
Title source: ruleDescription
SQL injection vulnerability in view.php in the Friendfinder 3.3 and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the id parameter.
Exploits (1)
References (5)
Scores
EPSS
0.0064
EPSS Percentile
70.2%
Classification
Status
draft
Affected Products (1)
xoops/friendfinder_module
< 3.3
Timeline
Published
Apr 03, 2007
Tracked Since
Feb 18, 2026