Lucene search
HistoryOct 03, 2022 - 4:14 p.m.
CVE-2007-3652
cve
2007
3652
sql injection
farsi script
faname 1.0
remote attackers
arbitrary sql commands
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.2 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
53.0%
SQL injection vulnerability in class/page.php in Farsi Script (aka FaScript) FaName 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: this might be the same issue as CVE-2008-0328.
Affected configurations
Node
fascriptfanameMatch1.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| fascript:faname | fascript faname | eq | 1.0 |
Related
prion
prion
Sql injection
2008-07-09 00:41:00
Sql injection
2008-01-17 22:00:00
nvd
nvd
CVE-2007-3652
2008-07-09 00:41:00
CVE-2008-0328
2008-01-17 22:00:00
cvelist
cvelist
CVE-2007-3652
2022-10-03 16:14:23
CVE-2008-0328
2008-01-17 21:07:00
packetstorm
packetstorm
faname10-sql.txt
2008-07-01 00:00:00
cve
cve
CVE-2008-0328
2008-01-17 22:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.2 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
53.0%
Related for CVE-2007-3652