Lucene search

K
cve[email protected]CVE-2007-1295
HistoryMar 07, 2007 - 12:19 a.m.

CVE-2007-1295

2007-03-0700:19:00
NVD-CWE-Other
web.nvd.nist.gov
30
cve-2007-1295
sql injection
topic_title.php
aj forum 1.0
remote attackers
nvd

8.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.2%

SQL injection vulnerability in topic_title.php in AJ Forum 1.0 allows remote attackers to execute arbitrary SQL commands via the td_id parameter.

CPENameOperatorVersion
aj_forum:aj_forumaj forumeq1.0

8.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.2%

Related for CVE-2007-1295