Lucene search
HistoryJun 20, 2007 - 10:30 p.m.
CVE-2007-3301
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.2
Confidence
Low
EPSS
0.002
Percentile
61.9%
SQL injection vulnerability in forum/include/error/autherror.cfm in FuseTalk allows remote attackers to execute arbitrary SQL commands via the errorcode parameter. NOTE: a patch may have been released privately between April and June 2007. NOTE: this issue may overlap CVE-2007-3273.
Affected configurations
Node
fusetalkfusetalkMatch2.0-basic
ORfusetalkfusetalkMatch2.0-coldfusion
ORfusetalkfusetalkMatch2.0-enterprise
ORfusetalkfusetalkMatch2.0-standard
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fusetalk | fusetalk | 2.0 | cpe:2.3:a:fusetalk:fusetalk:2.0:-:basic:*:*:*:*:* |
| fusetalk | fusetalk | 2.0 | cpe:2.3:a:fusetalk:fusetalk:2.0:-:coldfusion:*:*:*:*:* |
| fusetalk | fusetalk | 2.0 | cpe:2.3:a:fusetalk:fusetalk:2.0:-:enterprise:*:*:*:*:* |
| fusetalk | fusetalk | 2.0 | cpe:2.3:a:fusetalk:fusetalk:2.0:-:standard:*:*:*:*:* |
Related
cve
cve
CVE-2007-3301
2007-06-20 22:30:00
CVE-2007-3273
2007-06-19 21:30:00
prion
prion
Sql injection
2007-06-20 22:30:00
Sql injection
2007-06-19 21:30:00
cvelist
cvelist
CVE-2007-3301
2007-06-20 22:00:00
CVE-2007-3273
2007-06-19 21:00:00
nessus
nessus
FuseTalk index.cfm txForumID Parameter SQL Injection
2007-06-20 00:00:00
nvd
nvd
CVE-2007-3273
2007-06-19 21:30:00
exploitdb
exploitdb
FuseTalk 2.0/3.0 - 'AuthError.cfm' SQL Injection
2007-06-19 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.2
Confidence
Low
EPSS
0.002
Percentile
61.9%
Related for NVD:CVE-2007-3301