Lucene search

K
dsquareDsquare SecurityE-350
HistoryJan 22, 2014 - 12:00 a.m.

Nuked-klaN 1.7.7 / SP4.4 SQL injection

2014-01-2200:00:00
Dsquare Security
34

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.025 Low

EPSS

Percentile

90.1%

Nuked-klaN <= 1.7.7 / <= SP4.4 SQL Injection via Referer header

Vulnerability Type: SQL Injection

For the exploit source code contact DSquare Security sales team.

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.025 Low

EPSS

Percentile

90.1%

Related for E-350