ID CVE-2007-0179
Summary SQL injection vulnerability in comment.php in PHPKIT 1.6.1 R2 allows remote attackers to execute arbitrary SQL commands via the subid parameter.
References
Vulnerable Configurations
  • cpe:2.3:a:phpkit:phpkit:1.6.1:rc2
    cpe:2.3:a:phpkit:phpkit:1.6.1:rc2
CVSS
Base: 7.5 (as of 11-01-2007 - 12:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
exploit-db via4
description PHPKit 1.6.1 Comment.PHP SQL Injection Vulnerability. CVE-2007-0179. Webapps exploit for php platform
id EDB-ID:29405
last seen 2016-02-03
modified 2007-01-09
published 2007-01-09
reporter yorn
source https://www.exploit-db.com/download/29405/
title PHPKit 1.6.1 Comment.PHP SQL Injection Vulnerability
refmap via4
bid 21962
bugtraq 20070109 Re: PHPKit 1.6.1 RC2 (faq/faq.php) Remote SQL Injection Exploit
osvdb 31266
sreason 2131
Last major update 15-11-2008 - 01:39
Published 10-01-2007 - 19:28
Last modified 16-10-2018 - 12:31
Back to Top