VYPR
Unrated severityNVD Advisory· Published Mar 22, 2007· Updated Jun 16, 2026

CVE-2007-1607

CVE-2007-1607

Description

search.php in w-Agora (Web-Agora) allows remote attackers to obtain potentially sensitive information via a ' (quote) value followed by certain SQL sequences in the (1) search_forum or (2) search_user parameter, which force a SQL error.

Affected products

2
  • W Agora/W Agora2 versions
    cpe:2.3:a:w-agora:w-agora:4.2.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:w-agora:w-agora:4.2.1:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.