Unrated severityNVD Advisory· Published May 21, 2007· Updated Apr 23, 2026

CVE-2007-2685

Description

Multiple SQL injection vulnerabilities in index.php in Jetbox CMS 2.1 allow remote attackers to execute arbitrary SQL commands via the (1) view or (2) login parameter.

Affected products

Jetbox/Jetbox CMS
cpe:2.3:a:jetbox:jetbox_cms:2.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

marc.infonvdExploitVendor Advisory
www.netvigilance.com/advisory0028nvdExploitVendor Advisory
www.osvdb.org/34784nvd
www.securityfocus.com/archive/1/469223/100/0/threadednvd
www.securityfocus.com/bid/24077nvd
exchange.xforce.ibmcloud.com/vulnerabilities/34387nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000