CVE Vulnerabilities

CVE-2007-2971

Published: Jun 01, 2007 | Modified: Nov 21, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

SQL injection vulnerability in getnewsitem.php in gCards 1.46 and earlier allows remote attackers to execute arbitrary SQL commands via the newsid parameter.

Affected Software

Name Vendor Start Version End Version
Gcards Greg_neustaetter * 1.46 (including)
Gcards Greg_neustaetter 1.13 (including) 1.13 (including)
Gcards Greg_neustaetter 1.43 (including) 1.43 (including)
Gcards Greg_neustaetter 1.44 (including) 1.44 (including)
Gcards Greg_neustaetter 1.45 (including) 1.45 (including)

References