Lucene search

PRIOn knowledge basePRION:CVE-2007-5975

HistoryNov 15, 2007 - 12:46 a.m.

Sql injection

2007-11-1500:46:00

PRIOn knowledge base

www.prio-n.com

8.6 High

AI Score

Confidence

Low

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

63.8%

JSON

SQL injection vulnerability in index.php in TBSource, as used in (1) TBDev and (2) TorrentStrike 0.4, allows remote authenticated users to execute arbitrary SQL commands via the choice parameter. NOTE: some of these details are obtained from third party information.

CPENameOperatorVersion
torrentstrikeeq0.4

CPE	Name	Operator	Version
	torrentstrike	eq	0.4

References

osvdb.org/38667

secunia.com/advisories/27566

www.securityfocus.com/archive/1/483552/100/0/threaded

www.securityfocus.com/bid/26415

exchange.xforce.ibmcloud.com/vulnerabilities/38402

marc.info/?l=bugtraq&m=119472280121280&w=2

8.6 High

AI Score

Confidence

Low

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

63.8%

JSON

Related for PRION:CVE-2007-5975

cve1