CVE-2007-1838

N/A Unknown

Published: April 03, 2007 Modified: April 23, 2026

Description

SQL injection vulnerability in view.php in the Friendfinder 3.3 and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the id parameter.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://www.securityfocus.com/archive/1/464153/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/23184

Source: cve@mitre.org

Exploit Vendor Advisory

http://www.vupen.com/english/advisories/2007/1146

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/33292

Source: cve@mitre.org

https://www.exploit-db.com/exploits/3597

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/464153/100/0/threaded