E107 : Security Vulnerabilities, CVEs, Published In 2010 (Sql injection)
Incomplete blacklist vulnerability in usersettings.php in e107 0.7.20 and earlier allows remote attackers to conduct SQL injection attacks via the loginname parameter.
Max CVSS
7.5
EPSS Score
0.17%
Published
2010-05-27
Updated
2012-12-13
1 vulnerabilities found