CVE-2007-4110

Name of the Vulnerable Software and Affected Versions Message Board / Threaded Discussion Forum Application Template (affected versions not specified)

Description The issue allows remote attackers to execute arbitrary SQL commands via the Password parameter in the sign in.aspx file. This can be exploited by sending malicious input to the API endpoint, potentially leading to unauthorized access or data manipulation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.