Lucene search
HistoryJan 08, 2008 - 11:46 a.m.
CVE-2007-6671
cve-2007-6671
sql injection
login_form.asp
instant softwares
dating site
vulnerability
remote attackers
arbitrary sql commands
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.2 High
AI Score
Confidence
Low
0.008 Low
EPSS
Percentile
81.5%
SQL injection vulnerability in login_form.asp in Instant Softwares Dating Site allows remote attackers to execute arbitrary SQL commands via the Password parameter, a different product than CVE-2006-6021. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
instantsoftwaresdating_site
| CPE | Name | Operator | Version |
|---|---|---|---|
| instantsoftwares:dating_site | instantsoftwares dating site | eq | * |
Related
cvelist
cvelist
prion
prion
Sql injection
2008-01-08 11:46:00
Sql injection
2008-01-08 11:46:00
nvd
nvd
cve
cve
CVE-2008-0130
2008-01-08 11:46:00
CVE-2006-6021
2006-11-21 23:07:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.2 High
AI Score
Confidence
Low
0.008 Low
EPSS
Percentile
81.5%
Related for CVE-2007-6671