CVE-2007-5180

Опубликовано: 03 окт. 2007

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Multiple SQL injection vulnerabilities in Ohesa Emlak Portali allow remote attackers to execute arbitrary SQL commands via the (1) Kategori parameter in satilik.asp and the (2) Emlak parameter in detay.asp.

Ссылки

http://osvdb.org/37407
http://osvdb.org/37408
http://packetstormsecurity.org/0709-exploits/ohesa-sql.txt
http://secunia.com/advisories/27033
Vendor Advisory
http://www.securityfocus.com/bid/25880
http://www.vupen.com/english/advisories/2007/3319
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/36877
http://osvdb.org/37407
http://osvdb.org/37408
http://packetstormsecurity.org/0709-exploits/ohesa-sql.txt
http://secunia.com/advisories/27033
Vendor Advisory
http://www.securityfocus.com/bid/25880
http://www.vupen.com/english/advisories/2007/3319
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/36877

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ohesa_emlak_portali:ohesa_emlak_portali:*:*:*:*:*:*:*:*

EPSS

Процентиль: 82%

0.01671

Низкий

7.5 High

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-wc5g-9mmj-hpgg

github

почти 4 года назад