Unrated severityNVD Advisory· Published Apr 18, 2007· Updated Jun 16, 2026
CVE-2007-2107
CVE-2007-2107
Description
SQL injection vulnerability in visit.php in the Rha7 Downloads (rha7downloads) 1.0 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the cid parameter, a different vector than CVE-2007-1960. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Affected products
2- cpe:2.3:a:rha7_downloads:rha7_downloads:1.0:*:*:*:*:*:*:*
- Range: 1.0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.