CVE-2007-4435

Published: Aug 20, 2007Modified: Apr 23, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Multiple SQL injection vulnerabilities in TorrentTrader before 1.07 allow remote attackers to execute arbitrary SQL commands via unspecified parameters to (1) account-inbox.php, (2) account-settings.php, and possibly (3) backend/functions.php.

Affected (1)

Products: Torrenttrader: Torrenttrader

Torrenttrader

1 product

Torrenttrader

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Torrenttrader Torrenttrader	Up to 1.06

References (16)

http://secunia.com/advisories/26504

Source: cve@mitre.org

PatchVendor Advisory

http://www.osvdb.org/36598

Source: cve@mitre.org

http://www.osvdb.org/36599

Source: cve@mitre.org

http://www.osvdb.org/36600

Source: cve@mitre.org

http://www.securityfocus.com/bid/25369

Source: cve@mitre.org

http://www.torrenttrader.org/index.php?showtopic=5776

Source: cve@mitre.org

http://www.torrenttrader.org/index.php?showtopic=6255

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/36119

Source: cve@mitre.org

http://secunia.com/advisories/26504