← back
CVE-2007-3705

CVE-2007-3705

EPSS 1.1%
SQL injection vulnerability in FuseTalk 2.0 allows remote attackers to execute arbitrary SQL commands via the FTVAR_SUBCAT (txForumID) parameter to forum/index.cfm and possibly other unspecified components, related to forum/include/error/forumerror.cfm.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/37140http://securityreason.com/securityalert/2879http://www.securityfocus.com/archive/1/471637/100/200/threaded