Lucene search

K
cvelistMitreCVELIST:CVE-2007-6127
HistoryNov 26, 2007 - 10:00 p.m.

CVE-2007-6127

2007-11-2622:00:00
mitre
www.cve.org
2

AI Score

8.5

Confidence

Low

EPSS

0.002

Percentile

61.3%

Multiple SQL injection vulnerabilities in project alumni 1.0.9 and earlier allow remote attackers to execute arbitrary SQL commands via the year parameter to (1) view.page.inc.php, which is reachable through a view action to index.php; or (2) the year parameter to news.page.inc.php, which is reachable through a news action to index.php.

AI Score

8.5

Confidence

Low

EPSS

0.002

Percentile

61.3%

Related for CVELIST:CVE-2007-6127