Unrated severityNVD Advisory· Published Jan 8, 2008· Updated Apr 23, 2026
CVE-2007-6670
CVE-2007-6670
Description
SQL injection vulnerability in search.php in PHCDownload 1.1.0 allows remote attackers to execute arbitrary SQL commands via the string parameter.
Affected products
1- cpe:2.3:a:phpcredo:phcdownload:1.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- lostmon.blogspot.com/2007/12/xss-flaw-posible-sql-injection-in.htmlnvdExploit
- www.securityfocus.com/bid/27066nvdExploit
- secunia.com/advisories/28258nvdVendor Advisory
- osvdb.org/40191nvd
News mentions
0No linked articles in our index yet.