CVE-2007-0687 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2007-0687

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

SQL injection vulnerability in i-search.php in Michelles L2J Dropcalc 4 and earlier allows remote authenticated users to execute arbitrary SQL commands via the itemid parameter.

Affected Software

Name	Vendor	Start Version	End Version
L2j_dropcalc	Michelle	*	4 (including)

References

http://osvdb.org/36038
http://www.securityfocus.com/bid/22335
https://exchange.xforce.ibmcloud.com/vulnerabilities/32003
https://www.exploit-db.com/exploits/3232
http://osvdb.org/36038
http://www.securityfocus.com/bid/22335
https://exchange.xforce.ibmcloud.com/vulnerabilities/32003
https://www.exploit-db.com/exploits/3232