CVE-2007-2230

Currently unrated

Key Information:

Vendor: Broadcom
Status: Cleverpath Portal
Vendor: CVE Published:; 25 April 2007

Summary

SQL injection vulnerability in CA Clever Path Portal allows remote authenticated users to execute limited SQL commands and retrieve arbitrary database contents via (1) the ofinterest parameter in a light search query, (2) description parameter in the advanced search query, and possibly other vectors.

References

http://www.hacktics.com/AdvCleverPathApr07.html

x_refsource_MISC

http://www.vupen.com/english/advisories/2007/1544

vdb-entryx_refsource_VUPEN

http://archives.neohapsis.com/archives/fulldisclosure/200...

mailing-listx_refsource_FULLDISC

Timeline

Vulnerability published
Apr 25, 2007
Vulnerability Reserved
Apr 25, 2007