Published: 06/09/2007 Updated: 29/07/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

SQL injection vulnerability in Gforge prior to 3.1 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gforge gforge

Sumit I Siddharth discovered that Gforge, a collaborative development tool performs insufficient input sanitising, which allows SQL injection For the oldstable distribution (sarge) this problem has been fixed in version 31-31sarge2 For the stable distribution (etch) this problem has been fixed in version 4514-22etch1 For the unstable distri ...

Sql Injection Vulnerability In GForge Portcullis Security Advisory 07-014 Vulnerable System: All current versions till 46b2 Vulnerability Title: Sql Injection Vulnerability Discovery and Development: Portcullis Security Testing Services Credit for Discovery: Summit Siddharth - Portcullis Computer Security Ltd Affected systems: N/A Vendor ...

CWE-20 CWE-89 http://www.debian.org/security/2007/dsa-1369 http://www.securityfocus.com/bid/25585 http://secunia.com/advisories/26723 https://exchange.xforce.ibmcloud.com/vulnerabilities/36505 https://nvd.nist.gov https://www.debian.org/security/./dsa-1369 https://www.exploit-db.com/exploits/4404/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-3913

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect