Security Advisory

CVE-2007-4086

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2007-07-30 17:00:00

Last updated 2024-08-07 14:46:37

Assigner mitre

State PUBLISHED

Description

Multiple SQL injection vulnerabilities in AlstraSoft Video Share Enterprise allow remote attackers to execute arbitrary SQL commands via (1) the gid parameter to gmembers.php, or (2) the UID parameter to (a) uvideos.php, (b) ugroups.php, (c) uprofile.php, (d) ufavour.php, (e) ufriends.php, or (f) uplaylist.php.

← Browse all CVEs View on cve.org ↗