CVE-2007-5402

Name of the Vulnerable Software and Affected Versions Layton HelpBox version 3.7.1

Description The issue allows remote attackers to execute arbitrary SQL commands via the sys request id parameter to 'editrequestenduser.asp'. Additionally, remote authenticated users can execute arbitrary SQL commands via the oldpassword parameter to 'writepwdenduser.asp' and the sys request id parameter to various other pages, including 'changerequeststatus.asp', 'editrequestuser.asp', 'requestcommentsuser.asp', and 'useractions.asp'.

Recommendations For Layton HelpBox version 3.7.1, consider restricting access to the sys request id parameter in the affected API endpoints until a patch is available. As a temporary workaround, avoid using the oldpassword parameter in 'writepwdenduser.asp' and restrict the sys request id parameter in 'changerequeststatus.asp', 'editrequestuser.asp', 'requestcommentsuser.asp', and 'useractions.asp' to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.