Lucene search
HistoryJan 04, 2008 - 11:46 a.m.
CVE-2007-6667
cve-2007-6667
sql injection
myphp forum 3.0
faq.php
remote attackers
nvd
8.6 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
60.3%
SQL injection vulnerability in faq.php in MyPHP Forum 3.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: the member.php vector is already covered by CVE-2005-0413.
| CPE | Name | Operator | Version |
|---|---|---|---|
| myphp:myphp_forum | myphp myphp forum | le | 3.0 |
| myphp:myphp_forum | myphp myphp forum | eq | 1.0 |
| myphp:myphp_forum | myphp myphp forum | eq | 2.0 |
Related
prion
prion
Sql injection
2008-01-04 11:46:00
Sql injection
2009-05-01 17:30:00
cve
cve
CVE-2008-6777
2009-05-01 17:30:00
CVE-2005-0413
2005-04-27 04:00:00
8.6 High
AI Score
Confidence
Low
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
60.3%
Related for CVE-2007-6667