Lucene search
HistoryAug 31, 2007 - 11:17 p.m.
CVE-2007-4645
cve-2007-4645
sql injection
index.php
nmdeluxe 2.0.0
remote attackers
arbitrary sql commands
8.6 High
AI Score
Confidence
Low
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
0.005 Low
EPSS
Percentile
75.9%
SQL injection vulnerability in index.php in NMDeluxe 2.0.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a newspost do action, a different vulnerability than CVE-2006-1108.
| CPE | Name | Operator | Version |
|---|---|---|---|
| nmdeluxe:nmdeluxe | nmdeluxe | eq | 2.0.0 |
Related
cvelist
cvelist
CVE-2007-4645
2007-08-31 23:00:00
CVE-2006-1108
2006-03-09 11:00:00
prion
prion
Sql injection
2007-08-31 23:17:00
Sql injection
2006-03-09 13:06:00
cve
cve
CVE-2006-1108
2006-03-09 13:06:00
securityvulns
securityvulns
[eVuln] NMDeluxe XSS & SQL Injection Vulnerabilities
2006-03-18 00:00:00
8.6 High
AI Score
Confidence
Low
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
0.005 Low
EPSS
Percentile
75.9%
Related for CVE-2007-4645