VYPR

rha7downloads

by XOOPS

CVEs (2)

  • CVE-2007-1960Apr 11, 2007
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in visit.php in the Rha7 Downloads (rha7downloads) 1.0 module for XOOPS, and possibly other versions up to 1.10, allows remote attackers to execute arbitrary SQL commands via the lid parameter.

  • CVE-2007-2107Apr 18, 2007
    risk 0.00cvss epss 0.01

    SQL injection vulnerability in visit.php in the Rha7 Downloads (rha7downloads) 1.0 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the cid parameter, a different vector than CVE-2007-1960. NOTE: the provenance of this information is unknown; the…