CVE-2007-3399

N/A Unknown

Published: June 26, 2007 Modified: April 23, 2026

Description

SQL injection vulnerability in include/get_userdata.php in Power Phlogger (PPhlogger) 2.2.5 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter to login.php.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://osvdb.org/38229

Source: cve@mitre.org

http://osvdb.org/38944

Source: cve@mitre.org

http://securityreason.com/securityalert/2833

Source: cve@mitre.org

Exploit

http://www.securityfocus.com/archive/1/472199/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/24622

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/2433

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/35043

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/35258

Source: cve@mitre.org

http://osvdb.org/38229