CVE-2007-1237

2007-03-0319:00:00

mitre

www.cve.org

AI Score

6.6

Confidence

Low

EPSS

0.005

Percentile

75.8%

JSON

sitex allows remote attackers to obtain potentially sensitive information via a ’ (quote) value for certain parameters, as demonstrated by parameters used in forum and search, which forces a SQL error.

References

osvdb.org/33154

securityreason.com/securityalert/2373

www.securityfocus.com/archive/1/461305/100/0/threaded