CVE-2007-5449

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2007-5449
SQL injection vulnerability in searchresult.php in Softbiz Recipes Portal Script allows remote attackers to execute arbitrary SQL commands via the sbcat_id parameter.

7.5 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://secunia.com/advisories/27258 Third Party Advisory
http://www.securityfocus.com/bid/26063 Broken Link
http://www.vupen.com/english/advisories/2007/3497 Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/37201 Third Party Advisory
https://www.exploit-db.com/exploits/4527 Exploit VDB Entry
http://secunia.com/advisories/27258 Third Party Advisory
http://www.securityfocus.com/bid/26063 Broken Link
http://www.vupen.com/english/advisories/2007/3497 Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/37201 Third Party Advisory
https://www.exploit-db.com/exploits/4527 Exploit VDB Entry
Configurations

Configuration 1 (hide)

cpe:2.3:a:softbizscripts:recipes_portal_script:-:*:*:*:*:*:*:*
History

06 Apr 2026, 14:37

Type Values Removed Values Added
First Time Softbizscripts
Softbizscripts recipes Portal Script
CPE cpe:2.3:a:softbiz:recipes_portal_script:*:*:*:*:*:*:*:* cpe:2.3:a:softbizscripts:recipes_portal_script:-:*:*:*:*:*:*:*
References () http://secunia.com/advisories/27258 - () http://secunia.com/advisories/27258 - Third Party Advisory
References () http://www.securityfocus.com/bid/26063 - () http://www.securityfocus.com/bid/26063 - Broken Link
References () http://www.vupen.com/english/advisories/2007/3497 - () http://www.vupen.com/english/advisories/2007/3497 - Third Party Advisory
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/37201 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/37201 - Third Party Advisory
References () https://www.exploit-db.com/exploits/4527 - () https://www.exploit-db.com/exploits/4527 - Exploit, VDB Entry

21 Nov 2024, 00:37

Type Values Removed Values Added
References () http://secunia.com/advisories/27258 - () http://secunia.com/advisories/27258 -
References () http://www.securityfocus.com/bid/26063 - () http://www.securityfocus.com/bid/26063 -
References () http://www.vupen.com/english/advisories/2007/3497 - () http://www.vupen.com/english/advisories/2007/3497 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/37201 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/37201 -
References () https://www.exploit-db.com/exploits/4527 - () https://www.exploit-db.com/exploits/4527 -
Information

Published : 2007-10-14 18:17

Updated : 2026-04-06 14:37

NVD link : CVE-2007-5449

Mitre link : CVE-2007-5449

CVE.ORG link : CVE-2007-5449

JSON object : View

Products Affected

softbizscripts

  • recipes_portal_script
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')