CVE-2007-4804 | auraCMS pesan.php id sql injection (EDB-4385 / XFDB-36519)

10月 6, 2024
9:58 pm

A vulnerability was found in auraCMS. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file pesan.php. The manipulation of the argument id leads to sql injection.

This vulnerability is known as CVE-2007-4804. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2007-4804 | auraCMS pesan.php id sql injection (EDB-4385 / XFDB-36519)

Elvescore.io

Recent Posts

CVE-2024-10000 – Masteriyo LMS – WordPress Stored Cross-Site Scripting (XSS)

CVE-2024-10008 – Masteriyo LMS WordPress Plugin Role Escalation Vulnerability

CVE-2024-10479 – LinZhaoguan pb-cms Theme Management Module Remote Cross-Site Scripting Vulnerability

CVE-2024-22065 – “ZTE MF258 Pro Command Injection Vulnerability”

CVE-2024-10477 – LinZhaoguan pb-cms Cross-Site Scripting Vulnerability

CVE-2024-10478 – LinZhaoguan pb-cms Cross Site Scripting Vulnerability

CVE-2007-4804 | auraCMS pesan.php id sql injection (EDB-4385 / XFDB-36519)

CVE-2007-4804 | auraCMS pesan.php id sql injection (EDB-4385 / XFDB-36519)