CVE-2007-4095

2007-07-3020:00:00

mitre

www.cve.org

8.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

38.9%

JSON

SQL injection vulnerability in BSM Store Dependent Forums 1.02 allows remote attackers to execute arbitrary SQL commands via a Username field in an unspecified component, probably the FrmUserName parameter in login.asp.

References

secunia.com/advisories/26212

securityreason.com/securityalert/2935

www.securityfocus.com/archive/1/474687/100/0/threaded

www.securityfocus.com/bid/25072