Description
Multiple SQL injection vulnerabilities in eSyndiCat allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to news.php or (2) the name parameter to page.php.
Exploits (1)
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/35427
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/24908
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/36267
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2543
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/36266
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/4183
Scores
EPSS
0.0129
EPSS Percentile
79.8%
Details
Status
published
Products (1)
esyndicat/esyndicat_directory
1.6
Published
Jul 17, 2007
Tracked Since
Feb 18, 2026