Lucene search
MitreCVE-2007-4116HistoryJul 31, 2007 - 10:17 a.m.
CVE-2007-4116
2007-07-3110:17:00
mitre
web.nvd.nist.gov
31
2
cve-2007-4116
sql injection
metyus forum portal 1.0
remote attackers
arbitrary sql commands
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
8.2
Confidence
Low
EPSS
0.008
Percentile
82.2%
SQL injection vulnerability in philboard_forum.asp in Metyus Forum Portal 1.0 allows remote attackers to execute arbitrary SQL commands via the forumid parameter. NOTE: this might be related to CVE-2007-0920 or CVE-2007-3884.
Affected configurations
Node
metyusforum_portalMatch1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| metyus | forum_portal | 1.0 | cpe:2.3:a:metyus:forum_portal:1.0:*:*:*:*:*:*:* |
References
Social References
More
Related
nvd
nvd
cvelist
cvelist
prion
prion
exploitdb
exploitdb
Metyus Forum Portal 1.0 - 'Philboard_Forum.asp' SQL Injection
2007-07-27 00:00:00
husrevforum 1.0.1/2.0.1 - 'Philboard_forum.asp' SQL Injection
2007-07-17 00:00:00
philboard 1.14 - 'philboard_forum.asp' SQL Injection
2007-02-12 00:00:00
cve
cve
securityvulns
securityvulns
CGI bugs
2003-05-30 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
8.2
Confidence
Low
EPSS
0.008
Percentile
82.2%
Related for CVE-2007-4116