Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 31/08/2007 Updated: 29/09/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

SQL injection vulnerability in shownews.php in phpns 1.1 allows remote malicious users to execute arbitrary SQL commands via the id parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
phpns phpns 1.1

PHPNS SQL Injection Software: phpns current version (v11) Vendor link: phpnscom Attack: SQL Injection Original advisory: 14houseblogspotcom/2007/08/phpns-sql-injectionhtml Discovered by: David Sopas Ferreira aka SmOk3 < smok3f00 at gmailcom > SQL Injection ------------- An attacker may execute arbitrary SQL statement ...

NVD-CWE-Other http://14house.blogspot.com/2007/08/phpns-sql-injection.html http://www.securityfocus.com/bid/25479 http://osvdb.org/38352 http://www.vupen.com/english/advisories/2007/3038 https://exchange.xforce.ibmcloud.com/vulnerabilities/36315 https://www.exploit-db.com/exploits/4339 https://nvd.nist.gov https://www.exploit-db.com/exploits/4339/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-4628

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect