Lucene search

[email protected]CVE-2007-2821

HistoryMay 22, 2007 - 9:30 p.m.

CVE-2007-2821

2007-05-2221:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-2821

sql injection

wordpress

security vulnerability

8.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.051 Low

EPSS

Percentile

92.9%

JSON

SQL injection vulnerability in wp-admin/admin-ajax.php in WordPress before 2.2 allows remote attackers to execute arbitrary SQL commands via the cookie parameter.

CPENameOperatorVersion
wordpress:wordpresswordpressle2.1.3

CPE	Name	Operator	Version
wordpress:wordpress	wordpress	le	2.1.3

References

osvdb.org/36311

secunia.com/advisories/25345

secunia.com/advisories/29014

www.debian.org/security/2008/dsa-1502

www.exploit-db.com/exploits/3960

www.securityfocus.com/archive/1/469258/100/0/threaded

www.securityfocus.com/bid/24076

www.vupen.com/english/advisories/2007/1889

www.waraxe.us/advisory-50.html

exchange.xforce.ibmcloud.com/vulnerabilities/34399

8.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.051 Low

EPSS

Percentile

92.9%

JSON

Related for CVE-2007-2821

nessus2 debiancve1 prion1 patchstack1 cvelist1 ubuntucve1 securityvulns1 debian2 openvas2 osv1