Lucene search

K
cve[email protected]CVE-2007-6223
HistoryDec 04, 2007 - 5:46 p.m.

CVE-2007-6223

2007-12-0417:46:00
CWE-89
web.nvd.nist.gov
23
cve-2007-6223
sql injection
phpbb garage
vulnerability
remote code execution
nvd

9.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

40.3%

SQL injection vulnerability in garage.php in phpBB Garage 1.2.0 Beta3 allows remote attackers to execute arbitrary SQL commands via the make_id parameter in a search action in browse mode.

CPENameOperatorVersion
phpbb:garagephpbb garageeq1.2.0_beta3

9.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

40.3%

Related for CVE-2007-6223