Lucene search

[email protected]CVE-2007-4053

HistoryJul 30, 2007 - 5:30 p.m.

CVE-2007-4053

2007-07-3017:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-4053

sql injection

img_view.class.php

linpha 1.3.1

remote attackers

nvd

8.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.5%

JSON

SQL injection vulnerability in include/img_view.class.php in LinPHA 1.3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the order parameter to new_images.php.

CPENameOperatorVersion
linpha:linphalinphale1.3.1

CPE	Name	Operator	Version
linpha:linpha	linpha	le	1.3.1

References

osvdb.org/36286

secunia.com/advisories/26259

www.securityfocus.com/bid/25119

www.vupen.com/english/advisories/2007/2692

exchange.xforce.ibmcloud.com/vulnerabilities/35674

www.exploit-db.com/exploits/4242

8.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.009 Low

EPSS

Percentile

82.5%

JSON

Related for CVE-2007-4053

nessus1 cvelist1 prion1