Lucene search

[email protected]CVE-2007-1556

HistoryMar 21, 2007 - 1:19 a.m.

CVE-2007-1556

2007-03-2101:19:00

[email protected]

web.nvd.nist.gov

sql injection

creative files 1.2

remote attackers

nvd

vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.4 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.1%

JSON

SQL injection vulnerability in kommentare.php in Creative Files 1.2 allows remote attackers to execute arbitrary SQL commands via the dlid parameter.

Affected configurations

NVD

Node

thecreativeheads.decreative_filesMatch1.2

CPENameOperatorVersion
thecreativeheads.de:creative_filesthecreativeheads.de creative fileseq1.2

CPE	Name	Operator	Version
thecreativeheads.de:creative_files	thecreativeheads.de creative files	eq	1.2

References

osvdb.org/33747

www.securityfocus.com/bid/23000

exchange.xforce.ibmcloud.com/vulnerabilities/33021

www.exploit-db.com/exploits/3498

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.4 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

69.1%

JSON

Related for CVE-2007-1556

prion1 nvd1 cvelist1 securityvulns1