CVE-2007-2971

N/A Unknown

Published: June 01, 2007 Modified: April 23, 2026

Description

SQL injection vulnerability in getnewsitem.php in gCards 1.46 and earlier allows remote attackers to execute arbitrary SQL commands via the newsid parameter.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://marc.info/?l=bugtraq&m=120880332905213&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=120881500629066&w=2

Source: cve@mitre.org

http://osvdb.org/36317

Source: cve@mitre.org

http://secunia.com/advisories/25452

Source: cve@mitre.org

Exploit Vendor Advisory

http://www.securityfocus.com/bid/24175

Source: cve@mitre.org

Exploit

http://www.vupen.com/english/advisories/2007/1961

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/34529

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/41927

Source: cve@mitre.org

https://www.exploit-db.com/exploits/3988

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=120880332905213&w=2