VYPR
Unrated severityNVD Advisory· Published Jun 18, 2007· Updated Jun 16, 2026

CVE-2007-3250

CVE-2007-3250

Description

SQL injection vulnerability in mod_banners.php in Elxis CMS before 2006.4 20070613 allows remote attackers to execute arbitrary SQL commands via the mb_tracker cookie. NOTE: the product was patched without updating the version number; later downloads of 2006.4 are not affected.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • Elxis/CMS5 versions
    cpe:2.3:a:elxis:elxis_cms:2006.1:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:elxis:elxis_cms:2006.1:*:*:*:*:*:*:*
    • cpe:2.3:a:elxis:elxis_cms:2006.2:*:*:*:*:*:*:*
    • cpe:2.3:a:elxis:elxis_cms:2006.3:*:*:*:*:*:*:*
    • cpe:2.3:a:elxis:elxis_cms:2006.4:*:*:*:*:*:*:*
    • (no CPE)range: < 2006.4 20070613

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.