CVE-2007-3298

2007-06-2022:00:00

mitre

www.cve.org

AI Score

8.4

Confidence

Low

EPSS

0.006

Percentile

79.5%

JSON

SQL injection vulnerability in Spey before 0.4.1 allows remote attackers to execute arbitrary SQL commands via unspecified vectors related to MessageProcessor.cc and possibly other components.

References

osvdb.org/38729

sourceforge.net/forum/forum.php?forum_id=687624

sourceforge.net/project/shownotes.php?group_id=108104&release_id=502366

spey.cvs.sourceforge.net/spey/spey/src/MessageProcessor.cc?view=log

www.vupen.com/english/advisories/2007/2249