Unrated severityNVD Advisory· Published Dec 15, 2007· Updated Jun 16, 2026
CVE-2007-6338
CVE-2007-6338
Description
SQL injection vulnerability in userlogin.jsp in Trivantis CourseMill Enterprise Learning Management System 4.1 SP4 allows remote attackers to execute arbitrary SQL commands via the user parameter (username field). NOTE: some of these details are obtained from third party information.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:trivantis:coursemill_enterprise_learning_management_system:4.1:sp4:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:trivantis:coursemill_enterprise_learning_management_system:4.1:sp4:*:*:*:*:*:*
- (no CPE)range: 4.1 SP4
Patches
Vulnerability mechanics
References
7- packetstorm.linuxsecurity.com/0712-exploits/trivantis-sql.txtnvdExploit
- secunia.com/advisories/28098nvd
- securityreason.com/securityalert/3450nvd
- www.osvdb.org/39156nvd
- www.securityfocus.com/archive/1/485072/100/0/threadednvd
- www.securityfocus.com/bid/26865nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/39031nvd
News mentions
0No linked articles in our index yet.