CVE-2007-2534

** DISPUTED ** Multiple SQL injection vulnerabilities in admin.php in phpHoo3 allow remote attackers to execute arbitrary SQL commands via the (1) ADMIN_USER (USER) and (2) ADMIN_PASS (PASS) parameters during a login. NOTE: CVE disputes this vulnerability, since ADMIN_USER/ADMIN_PASS are initialized before use.
Configurations

Configuration 1

cpe:2.3:a:phphoo3:phphoo3:*:*:*:*:*:*:*:*

Information

Published : 2007-05-09 12:19

Updated : 2018-10-16 04:44


NVD link : CVE-2007-2534

Mitre link : CVE-2007-2534

Products Affected
No products.