Unrated severityNVD Advisory· Published Jun 20, 2007· Updated Jun 16, 2026
CVE-2007-3290
CVE-2007-3290
Description
categoria.php in LiveCMS 3.4 and earlier allows remote attackers to obtain sensitive information via a ' (quote) character in the cid parameter, which reveals the path in a forced SQL error message.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:livecms:livecms:3.0:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:livecms:livecms:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:livecms:livecms:3.3:*:*:*:*:*:*:*
- cpe:2.3:a:livecms:livecms:3.3_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:livecms:livecms:3.3_rc2:*:*:*:*:*:*:*
- cpe:2.3:a:livecms:livecms:3.4:*:*:*:*:*:*:*
- cpe:2.3:a:livecms:livecms:3.4a:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.