Lucene search
HistoryJun 12, 2007 - 11:30 p.m.
CVE-2007-3190
cve-2007-3190
sql injection
auth.php
just for fun network management system
jffnms 0.8.3
8.4 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.005 Low
EPSS
Percentile
77.2%
Multiple SQL injection vulnerabilities in auth.php in Just For Fun Network Management System (JFFNMS) 0.8.3, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) user and (2) pass parameters.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jffnms:just_for_fun_network_management_system | jffnms just for fun network management system | eq | 0.8.3 |
Related
nessus
nessus
JFFNMS auth.php Multiple Parameter SQL Injection
2007-06-12 00:00:00
Debian DSA-1374-1 : jffnms - several vulnerabilities
2007-09-14 00:00:00
prion
prion
Sql injection
2007-06-12 23:30:00
Sql injection
2007-06-12 23:30:00
ubuntucve
ubuntucve
CVE-2007-3190
2007-06-12 00:00:00
CVE-2007-3204
2007-06-12 00:00:00
cve
cve
CVE-2007-3204
2007-06-12 23:30:00
osv
osv
jffnms - several vulnerabilities
2007-09-11 00:00:00
debian
debian
[SECURITY] [DSA 1374-1] New jffnms packages fix several vulnerabilities
2007-09-11 18:57:54
openvas
openvas
Debian: Security Advisory (DSA-1374-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 1374-1 (jffnms)
2008-01-17 00:00:00
8.4 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.005 Low
EPSS
Percentile
77.2%
Related for CVE-2007-3190