CVE-2007-0575

Опубликовано: 30 янв. 2007

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Multiple SQL injection vulnerabilities in the administrative login page (admin/login.asp) in ASPCode.net AdMentor allow remote attackers to execute arbitrary SQL commands via the (1) Userid and (2) Password fields.

Ссылки

http://forums.avenir-geopolitique.net/viewtopic.php?t=2606
Exploit
http://securityreason.com/securityalert/2207
http://www.securityfocus.com/archive/1/458303/100/0/threaded
http://www.securityfocus.com/archive/1/460632/100/100/threaded
http://www.securityfocus.com/bid/22281
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/31908
http://forums.avenir-geopolitique.net/viewtopic.php?t=2606
Exploit
http://securityreason.com/securityalert/2207
http://www.securityfocus.com/archive/1/458303/100/0/threaded
http://www.securityfocus.com/archive/1/460632/100/100/threaded
http://www.securityfocus.com/bid/22281
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/31908

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:stefan_holmberg:admentor:*:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.0082

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-j8hh-x447-248f

github

почти 4 года назад