Lucene search
HistoryJul 19, 2007 - 5:30 p.m.
CVE-2007-3905
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.2 High
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.8%
SQL injection vulnerability in Zoph before 0.7.0.1 might allow remote attackers to execute arbitrary SQL commands via the _order parameter to (1) photos.php and (2) edit_photos.php.
Affected configurations
Node
zophzophRange≤0.7
Related
debian
debian
[SECURITY] [DSA 1389-2] New zoph packages fix SQL injection
2007-10-24 22:21:34
[SECURITY] [DSA 1389-1] New zoph packages fix SQL injection
2007-10-18 20:39:48
securityvulns
securityvulns
[SECURITY] [DSA 1389-1] New zoph packages fix SQL injection
2007-10-20 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-1389-2)
2008-01-17 00:00:00
Debian Security Advisory DSA 1389-1 (zoph)
2008-01-17 00:00:00
Debian Security Advisory DSA 1389-1 (zoph)
2008-01-17 00:00:00
nessus
nessus
Debian DSA-1389-2 : zoph - missing input sanitising
2007-10-25 00:00:00
osv
osv
zoph - SQL injection
2007-10-18 00:00:00
zoph - SQL injection
2007-10-18 00:00:00
cvelist
cvelist
CVE-2007-3905
2007-07-19 17:00:00
debiancve
debiancve
CVE-2007-3905
2007-07-19 17:30:00
cve
cve
CVE-2007-3905
2007-07-19 17:30:00
ubuntucve
ubuntucve
CVE-2007-3905
2007-07-19 00:00:00
prion
prion
Sql injection
2007-07-19 17:30:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.2 High
AI Score
Confidence
Low
0.01 Low
EPSS
Percentile
83.8%
Related for NVD:CVE-2007-3905