CVE Vulnerabilities

CVE-2007-0223

Published: Jan 13, 2007 | Modified: Jul 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

SQL injection vulnerability in shared/code/cp_functions_downloads.php in Nicola Asuni All In One Control Panel (AIOCP) before 1.3.009 allows remote attackers to execute arbitrary SQL commands via the download_category parameter.

Affected Software

Name Vendor Start Version End Version
All_in_one_control_panel Nicola_asuni 1.3.000 1.3.000
All_in_one_control_panel Nicola_asuni 1.3.001 1.3.001
All_in_one_control_panel Nicola_asuni 1.3.002 1.3.002
All_in_one_control_panel Nicola_asuni 1.3.003 1.3.003
All_in_one_control_panel Nicola_asuni 1.3.004 1.3.004
All_in_one_control_panel Nicola_asuni 1.3.005 1.3.005
All_in_one_control_panel Nicola_asuni 1.3.006 1.3.006
All_in_one_control_panel Nicola_asuni 1.3.007 1.3.007
All_in_one_control_panel Nicola_asuni 1.3.008 1.3.008

References