Lucene search

[email protected]CVE-2007-4119

HistoryAug 01, 2007 - 4:17 p.m.

CVE-2007-4119

2007-08-0116:17:00

[email protected]

web.nvd.nist.gov

cve

2007

4119

sql injection

yonetici.asp

berthanas ziyaretci defteri 2.0

vulnerability

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.5 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

70.9%

JSON

Multiple SQL injection vulnerabilities in yonetici.asp in Berthanas Ziyaretci Defteri 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) user and (2) Pass fields.

Affected configurations

NVD

Node

berthanas_ziyaretcidefteriMatch2.0

CPENameOperatorVersion
berthanas_ziyaretci:defteriberthanas ziyaretci defterieq2.0

CPE	Name	Operator	Version
berthanas_ziyaretci:defteri	berthanas ziyaretci defteri	eq	2.0

References

secunia.com/advisories/26371

securityreason.com/securityalert/2943

www.securityfocus.com/archive/1/474930/100/0/threaded

www.securityfocus.com/bid/25109

www.vupen.com/english/advisories/2007/2761

exchange.xforce.ibmcloud.com/vulnerabilities/35684

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.5 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

70.9%

JSON

Related for CVE-2007-4119

cvelist1 prion1 nvd1