Lucene search
PRIOn knowledge basePRION:CVE-2007-1898HistoryMay 16, 2007 - 10:30 p.m.
Code injection
2007-05-1622:30:00
PRIOn knowledge base
www.prio-n.com
2
7 High
AI Score
Confidence
Low
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.042 Low
EPSS
Percentile
92.0%
formmail.php in Jetbox CMS 2.1 allows remote attackers to send arbitrary e-mails (spam) via modified recipient, _SETTINGS[allowed_email_hosts][], and subject parameters.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jetbox_cms | eq | 2.1 |
References
Related
securityvulns
securityvulns
Jetbox CMS version 2.1 E-Mail Injection Vulnerability
2007-05-17 00:00:00
cve
cve
CVE-2007-1898
2007-05-16 22:30:00
CVE-2007-2731
2007-05-16 22:30:00
packetstorm
packetstorm
jetbox-inject.txt
2007-05-17 00:00:00
prion
prion
Crlf injection
2007-05-16 22:30:00
7 High
AI Score
Confidence
Low
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.042 Low
EPSS
Percentile
92.0%
Related for PRION:CVE-2007-1898