Lucene search
MitreCVE-2007-0339HistoryJan 18, 2007 - 2:28 a.m.
CVE-2007-0339
2007-01-1802:28:00
mitre
web.nvd.nist.gov
30
cve-2007-0339
sql injection
index.php
scriptme sme filemailer
vulnerability
remote attackers
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.3
Confidence
Low
EPSS
0.005
Percentile
77.4%
SQL injection vulnerability in index.php (aka the login form) in Scriptme SMe FileMailer 1.21 allows remote attackers to execute arbitrary SQL commands via the Password field (ps parameter). NOTE: some of these details are obtained from third party information.
Affected configurations
Node
scriptmesme_filemailerMatch1.21
| Vendor | Product | Version | CPE |
|---|---|---|---|
| scriptme | sme_filemailer | 1.21 | cpe:2.3:a:scriptme:sme_filemailer:1.21:*:*:*:*:*:*:* |
Related
prion
prion
Sql injection
2007-01-18 02:28:00
nvd
nvd
CVE-2007-0339
2007-01-18 02:28:00
cvelist
cvelist
CVE-2007-0339
2007-01-18 02:00:00
securityvulns
securityvulns
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.3
Confidence
Low
EPSS
0.005
Percentile
77.4%
Related for CVE-2007-0339