CVE-2007-5316
published 2007-10-09CVE-2007-5316: SQL injection vulnerability in browsecats.php in Softbiz Jobs and Recruitment Script allows remote attackers to execute arbitrary SQL commands via the cid…
PriorityP430medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
1.39%
68.9th percentile
SQL injection vulnerability in browsecats.php in Softbiz Jobs and Recruitment Script allows remote attackers to execute arbitrary SQL commands via the cid parameter.
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_redhat9.3CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-pv84-jfm6-v66r: SQL injection vulnerability in browsecats
ghsa_unreviewed·2022-05-01
CVE-2007-5316 [MEDIUM] CWE-89 GHSA-pv84-jfm6-v66r: SQL injection vulnerability in browsecats
SQL injection vulnerability in browsecats.php in Softbiz Jobs and Recruitment Script allows remote attackers to execute arbitrary SQL commands via the cid parameter.
Red Hat
lcms: insufficient input validation in ReadEmbeddedTextTag
vendor_redhat·2007-11-22·CVSS 9.3
CVE-2008-5316 [CRITICAL] CWE-20 lcms: insufficient input validation in ReadEmbeddedTextTag
lcms: insufficient input validation in ReadEmbeddedTextTag
Buffer overflow in the ReadEmbeddedTextTag function in src/cmsio1.c in Little cms color engine (aka lcms) before 1.16 allows attackers to have an unknown impact via vectors related to a length parameter inconsistency involving the contents of "the input file," a different vulnerability than CVE-2007-2741.
No detection rules found.
http://osvdb.org/37619http://secunia.com/advisories/27138http://www.securityfocus.com/bid/25980http://www.vupen.com/english/advisories/2007/3447https://exchange.xforce.ibmcloud.com/vulnerabilities/37027https://www.exploit-db.com/exploits/4504http://osvdb.org/37619http://secunia.com/advisories/27138http://www.securityfocus.com/bid/25980http://www.vupen.com/english/advisories/2007/3447https://exchange.xforce.ibmcloud.com/vulnerabilities/37027https://www.exploit-db.com/exploits/4504
2007-10-09
Published