cpe:/a:myphp:myphp_forum:1.0 cpe:/a:myphp:myphp_forum:2.0 cpe:/a:myphp:myphp_forum:3.0 CVE-2007-6667 2008-01-04T06:46:00.000-05:00 2017-09-28T21:30:03.127-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-01-04T15:10:00.000-05:00 BID 27083 OSVDB 39781 OSVDB 39782 EXPLOIT-DB 4822 XF myphpforum-faq-sql-injection(39347) SQL injection vulnerability in faq.php in MyPHP Forum 3.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: the member.php vector is already covered by CVE-2005-0413.