Lucene search

PRIOn knowledge basePRION:CVE-2007-0864

HistoryFeb 09, 2007 - 1:28 a.m.

Sql injection

2007-02-0901:28:00

PRIOn knowledge base

www.prio-n.com

8.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.4%

JSON

SQL injection vulnerability in register.php in LushiWarPlaner 1.0 allows remote attackers to inject arbitrary SQL commands via the id parameter.

CPENameOperatorVersion
lushiwarplanereq1.0

CPE	Name	Operator	Version
	lushiwarplaner	eq	1.0

References

osvdb.org/33167

secunia.com/advisories/24079

www.securityfocus.com/bid/22470

www.vupen.com/english/advisories/2007/0538

exchange.xforce.ibmcloud.com/vulnerabilities/32365

www.exploit-db.com/exploits/3288

8.5 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.4%

JSON

Related for PRION:CVE-2007-0864