CVE-2007-1847

Xoops Repository Module - SQL Injection

Title source: rule

Description

SQL injection vulnerability in viewcat.php in the Repository module for Xoops allows remote attackers to execute arbitrary SQL commands via the cid parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by ajann · perlwebappsphp
https://www.exploit-db.com/exploits/3612

References (4)

Scores

EPSS 0.0068
EPSS Percentile 71.2%

Classification

Status draft

Affected Products (1)

xoops/repository_module

Timeline

Published Apr 03, 2007
Tracked Since Feb 18, 2026