GForge Topic EditProfile.PHP SQL Injection Vulnerability

Bugtraq ID: 25665
Class: Input Validation Error
CVE: CVE-2007-4966
Remote: Yes
Local: No
Published: Sep 14 2007 12:00AM
Updated: May 07 2015 05:35PM
Credit: Summit Siddharth of Portcullis Computer Security is credited with the discovery of this vulnerability.
Vulnerable: GForge GForge 4.5.14
+ Debian Linux 4.0 sparc
 + Debian Linux 4.0 s/390
 + Debian Linux 4.0 powerpc
 + Debian Linux 4.0 mipsel
 + Debian Linux 4.0 mips
 + Debian Linux 4.0 m68k
 + Debian Linux 4.0 ia-64
 + Debian Linux 4.0 ia-32
 + Debian Linux 4.0 hppa
 + Debian Linux 4.0 arm
 + Debian Linux 4.0 amd64
 + Debian Linux 4.0 alpha
 + Debian Linux 4.0
 GForge GForge 4.5.11
GForge GForge 4.5
GForge GForge 4.0.2
GForge GForge 4.0.1
GForge GForge 4.0
GForge GForge 3.21
GForge GForge 3.3
GForge GForge 3.2
GForge GForge 3.1
+ Debian Linux 3.1 sparc
 + Debian Linux 3.1 s/390
 + Debian Linux 3.1 ppc
 + Debian Linux 3.1 mipsel
 + Debian Linux 3.1 mips
 + Debian Linux 3.1 m68k
 + Debian Linux 3.1 ia-64
 + Debian Linux 3.1 ia-32
 + Debian Linux 3.1 hppa
 + Debian Linux 3.1 arm
 + Debian Linux 3.1 amd64
 + Debian Linux 3.1 alpha
 + Debian Linux 3.1
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus