30 Mar 2017
CVE-2017-7290 - CVE Vulnerability
SQL injection vulnerability in XOOPS 2.5.7.2 and other versions before 2.5.8.1 allows remote authenticated administrators to execute arbitrary SQL commands via the url parameter to findusers.php. An example attack uses "into outfile" to create a backdoor program. (CVSS:0.0) (Last Update:2017-03-30)
Vulnerability Details : SQL injection vulnerability in XOOPS 2.5.7.2 and other versions before 2.5.8.1 allows remote authenticated administrators to execute arbitrary SQL commands via the url parameter to findusers.php. An example attack uses "into outfile" to create a backdoor program. Publish Date : 2017-03-30 Last Update Date : 2017-03-30 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2017-7290
- References For CVE-2017-7290
| ||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2017-7290There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |