CVE-2007-4085 in AskMe Proinfo

Summary

Multiple SQL injection vulnerabilities in AlstraSoft AskMe Pro allow remote attackers to execute arbitrary SQL commands via the (1) que_id parameter to forum_answer.php or (2) the cat_id parameter to search.php.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

07/30/2007

Disclosure

07/30/2007

Moderation

VulDB entry created

Entries

1: VDB-38092

CPE

ready

CWE

CWE-89 (Confirmed)

Exploit

Download

CVSS

7.3

EPSS

0.00383

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-4085
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-4085
CVE Details	https://www.cvedetails.com/cve/CVE-2007-4085/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!