Lucene search
MitreCVE-2007-1290HistoryMar 07, 2007 - 12:19 a.m.
CVE-2007-1290
2007-03-0700:19:00
mitre
web.nvd.nist.gov
28
cve-2007-1290
sql injection
tyger bug tracking system
tygerbt 1.1.3
remote attackers
arbitrary sql commands
bug parameter
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.1
Confidence
Low
EPSS
0.002
Percentile
55.6%
SQL injection vulnerability in ViewReport.php in Tyger Bug Tracking System (TygerBT) 1.1.3 allows remote attackers to execute arbitrary SQL commands via the bug parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Affected configurations
Node
tygerbug_tracking_systemMatch1.1.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| tyger | bug_tracking_system | 1.1.3 | cpe:2.3:a:tyger:bug_tracking_system:1.1.3:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2007-1290
2007-03-07 00:00:00
prion
prion
Sql injection
2007-03-07 00:19:00
nvd
nvd
CVE-2007-1290
2007-03-07 00:19:00
securityvulns
securityvulns
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.1
Confidence
Low
EPSS
0.002
Percentile
55.6%
Related for CVE-2007-1290