Phphoo3 : Security Vulnerabilities, CVEs,
Multiple SQL injection vulnerabilities in admin.php in phpHoo3 allow remote attackers to execute arbitrary SQL commands via the (1) ADMIN_USER (USER) and (2) ADMIN_PASS (PASS) parameters during a login. NOTE: CVE disputes this vulnerability, since ADMIN_USER/ADMIN_PASS are initialized before use
Max CVSS
7.5
EPSS Score
0.54%
Published
2007-05-09
Updated
2024-04-11
1 vulnerabilities found