← back
CVE-2007-3905

CVE-2007-3905

EPSS 1.3%
SQL injection vulnerability in Zoph before 0.7.0.1 might allow remote attackers to execute arbitrary SQL commands via the _order parameter to (1) photos.php and (2) edit_photos.php.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/26077http://secunia.com/advisories/27303https://exchange.xforce.ibmcloud.com/vulnerabilities/35446http://sourceforge.net/project/shownotes.php?release_id=523104&group_id=69353http://www.debian.org/security/2007/dsa-1389http://www.securityfocus.com/bid/24933