CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Xfairguy: >> Codeavalanche News >> 1.x Security Vulnerabilities

CVE-2007-1021

SQL injection vulnerability in inc_listnews.asp in CodeAvalanche News 1.x allows remote attackers to execute arbitrary SQL commands via the CAT_ID parameter.

CVSS Score

10.0

EPSS Score

0.004

Published

2007-02-21

Page 1

Vulnerabilities

Vulnerable Software

Xfairguy: >> Codeavalanche News >> 1.x Security Vulnerabilities

Products

Pricing

Contact Us