CVE-2007-5912

jPORTAL 2 - SQL Injection

Title source: llm

Description

SQL injection vulnerability in mailer.php in jPORTAL 2 allows remote attackers to execute arbitrary SQL commands via the to parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Kacper · textwebappsphp
https://www.exploit-db.com/exploits/4611

References (1)

Scores

EPSS 0.0040
EPSS Percentile 60.5%

Classification

CWE
CWE-89
Status draft

Affected Products (1)

jportal/jportal_web_portal

Timeline

Published Nov 10, 2007
Tracked Since Feb 18, 2026