CVE-2007-3301 in FuseTalk
Summary
SQL injection vulnerability in forum/include/error/autherror.cfm in FuseTalk allows remote attackers to execute arbitrary SQL commands via the errorcode parameter. NOTE: a patch may have been released privately between April and June 2007. NOTE: this issue may overlap CVE-2007-3273.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Reservation
06/20/2007
Disclosure
06/20/2007
Status
Confirmed
Entries
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerability | CWE | Exp | Cou | CVE |
|---|---|---|---|---|---|
| 37367 | FuseTalk autherror.cfm sql injection | 89 | Proof-of-Concept | Not defined | CVE-2007-3301 |