CVE-2007-2537

Multiple SQL injection vulnerabilities in mainfile.php in NPDS 5.10 and earlier allow remote authenticated users to execute arbitrary SQL commands via a (1) nickname or (2) Id in a cookie, or (3) the X-Forwarded-For (X_FORWARDED_FOR) HTTP header.
Configurations

Configuration 1

cpe:2.3:a:npds:npds:*:*:*:*:*:*:*:*

Information

Published : 2007-05-09 01:19

Updated : 2018-10-16 04:44


NVD link : CVE-2007-2537

Mitre link : CVE-2007-2537

Products Affected
No products.