Description

SQL injection vulnerability in e107 before 0.7.5 allows remote attackers to execute arbitrary SQL commands via unknown attack vectors.

Remediation

References

CVE-2006-2590

Related Vulnerabilities

Plone CMS Improper Restriction of XML External Entity Reference Vulnerability (CVE-2020-28736)

WordPress Plugin MC4WP:Mailchimp for WordPress Cross-Site Scripting (2.2.7)

WordPress Plugin zeList Directory Cross-Site Scripting (0.5.11.07)

TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-5656)

MediaWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2021-30153)

Severity

Medium

Classification

CVE-2006-2590

Tags

Missing Update Known Vulnerabilities