CVE-2007-6671

2008-01-0811:00:00

mitre

www.cve.org

8.1 High

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.5%

JSON

SQL injection vulnerability in login_form.asp in Instant Softwares Dating Site allows remote attackers to execute arbitrary SQL commands via the Password parameter, a different product than CVE-2006-6021. NOTE: some of these details are obtained from third party information.

References

aria-security.net/forum/showthread.php?p=1189

osvdb.org/39766

secunia.com/advisories/28283

securityreason.com/securityalert/3518

www.securityfocus.com/archive/1/485655/100/0/threaded

www.securityfocus.com/bid/27080

exchange.xforce.ibmcloud.com/vulnerabilities/39326