CVE-2007-2824

SQL injection vulnerability in paypal.php in AlstraSoft E-Friends 4.21 and earlier allows remote attackers to execute arbitrary SQL commands via the pack parameter in a paypal action for index.php.
Configurations

Configuration 1

cpe:2.3:a:alstrasoft:e-friends:*:*:*:*:*:*:*:*

Information

Published : 2007-05-22 09:30

Updated : 2017-10-11 01:32


NVD link : CVE-2007-2824

Mitre link : CVE-2007-2824

Products Affected