VYPR
Unrated severityNVD Advisory· Published May 5, 2014· Updated Jun 17, 2026

CVE-2013-7375

CVE-2013-7375

Description

SQL injection vulnerability in includes/classes/Authenticate.class.php in PHP-Fusion 7.02.01 through 7.02.05 allows remote attackers to execute arbitrary SQL commands via the user ID in a user cookie, a different vulnerability than CVE-2013-1803.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • cpe:2.3:a:php-fusion:php-fusion:7.02.01:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:a:php-fusion:php-fusion:7.02.01:*:*:*:*:*:*:*
    • cpe:2.3:a:php-fusion:php-fusion:7.02.02:*:*:*:*:*:*:*
    • cpe:2.3:a:php-fusion:php-fusion:7.02.03:*:*:*:*:*:*:*
    • cpe:2.3:a:php-fusion:php-fusion:7.02.04:*:*:*:*:*:*:*
    • cpe:2.3:a:php-fusion:php-fusion:7.02.05:*:*:*:*:*:*:*
    • (no CPE)range: 7.02.01 - 7.02.05

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.