{ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-3178", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Multiple SQL injection vulnerabilities in Zindizayn Okul Web Sistemi 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) pass parameter to (a) mezungiris.asp or (b) ogretmenkontrol.asp." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "2798", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/2798" }, { "name": "38348", "refsource": "OSVDB", "url": "http://osvdb.org/38348" }, { "name": "20070526 Zindizayn Okul Web Sistemi v1.0 Sql VulnZ.", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/469710/100/0/threaded" }, { "name": "okulwebsistemi-mezungiris-sql-injection(34559)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34559" }, { "name": "38349", "refsource": "OSVDB", "url": "http://osvdb.org/38349" }, { "name": "24174", "refsource": "BID", "url": "http://www.securityfocus.com/bid/24174" } ] } }