Unrated severityNVD Advisory· Published Jun 12, 2007· Updated Apr 23, 2026
CVE-2007-3190
CVE-2007-3190
Description
Multiple SQL injection vulnerabilities in auth.php in Just For Fun Network Management System (JFFNMS) 0.8.3, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) user and (2) pass parameters.
Affected products
1- cpe:2.3:a:jffnms:just_for_fun_network_management_system:0.8.3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6News mentions
0No linked articles in our index yet.