CVE-2007-4119

Опубликовано: 01 авг. 2007

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Multiple SQL injection vulnerabilities in yonetici.asp in Berthanas Ziyaretci Defteri 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) user and (2) Pass fields.

Ссылки

http://secunia.com/advisories/26371
http://securityreason.com/securityalert/2943
http://www.securityfocus.com/archive/1/474930/100/0/threaded
http://www.securityfocus.com/bid/25109
Exploit
http://www.vupen.com/english/advisories/2007/2761
https://exchange.xforce.ibmcloud.com/vulnerabilities/35684
http://secunia.com/advisories/26371
http://securityreason.com/securityalert/2943
http://www.securityfocus.com/archive/1/474930/100/0/threaded
http://www.securityfocus.com/bid/25109
Exploit
http://www.vupen.com/english/advisories/2007/2761
https://exchange.xforce.ibmcloud.com/vulnerabilities/35684

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:berthanas_ziyaretci:defteri:2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 76%

0.00964

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-3g8v-5492-gcv4

github

почти 4 года назад