CVE-2007-3990 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2007-3990

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

SQL injection vulnerability in default.asp in Dora Emlak 1.0, when the goster parameter is set to emlakdetay, allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected Software

Name	Vendor	Start Version	End Version
Dora_emlak	Asp_indir	1.0 (including)	1.0 (including)

References

http://secunia.com/advisories/26173
http://www.securityfocus.com/bid/25004
http://www.vupen.com/english/advisories/2007/2605
https://exchange.xforce.ibmcloud.com/vulnerabilities/35555
http://secunia.com/advisories/26173
http://www.securityfocus.com/bid/25004
http://www.vupen.com/english/advisories/2007/2605
https://exchange.xforce.ibmcloud.com/vulnerabilities/35555