CVE-2007-4920
Php Webquest < 2.5 - SQL Injection
Title source: ruleDescription
SQL injection vulnerability in soporte_derecha_w.php in PHP Webquest 2.5 and earlier allows remote attackers to execute arbitrary SQL commands via the id_actividad parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by D4real_TeaM · javawebappsphp
https://www.exploit-db.com/exploits/4407
References (6)
Scores
EPSS
0.0088
EPSS Percentile
75.5%
Details
CWE
CWE-89
Status
published
Products (1)
php_webquest/php_webquest
< 2.5
Published
Sep 17, 2007
Tracked Since
Feb 18, 2026