CVE-2007-3939

Spoonlabs Vivvo Article Management Cms < 3.40 - SQL Injection

Title source: rule

Description

SQL injection vulnerability in index.php in SpoonLabs Vivvo Article Management CMS (aka phpWordPress) CMS 3.4 and earlier allows remote attackers to execute arbitrary SQL commands via the category parameter.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Xianur0 · perlwebappsphp

https://www.exploit-db.com/exploits/6789

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by ajann · htmlwebappsphp

https://www.exploit-db.com/exploits/4192

View Code ZIP pw:eip

References (4)

[Exploit] http://www.securityfocus.com/bid/24955

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/35464

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/4192

[Third Party Advisory, VDB Entry] http://osvdb.org/39110

Scores

EPSS 0.0088

EPSS Percentile 75.4%

Details

Status published

Products (1)

spoonlabs/vivvo_article_management_cms < 3.40

Published Jul 21, 2007

Tracked Since Feb 18, 2026