VYPR
Unrated severityNVD Advisory· Published Nov 15, 2007· Updated Jun 16, 2026

CVE-2007-5986

CVE-2007-5986

Description

SQL injection vulnerability in include/functions.php in BtiTracker before 1.4.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Affected products

6
  • cpe:2.3:a:btiteam:btitracker:*:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:a:btiteam:btitracker:*:*:*:*:*:*:*:*range: <=1.4.4
    • cpe:2.3:a:btiteam:btitracker:1.3.2:*:*:*:*:*:*:*
    • cpe:2.3:a:btiteam:btitracker:1.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:btiteam:btitracker:1.4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:btiteam:btitracker:1.4.3:*:*:*:*:*:*:*
    • (no CPE)range: <1.4.5

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.