Lucene search
HistoryMar 03, 2007 - 8:19 p.m.
CVE-2007-1254
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
8 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.5%
SQL injection vulnerability in part.userprofile.php in Connectix Boards 0.7 and earlier allows remote authenticated users to execute arbitrary SQL commands and obtain privileges via the p_skin parameter to index.php.
Affected configurations
Node
connectixconnectix_boardsMatch0.4
ORconnectixconnectix_boardsMatch0.4.1
ORconnectixconnectix_boardsMatch0.4.2
ORconnectixconnectix_boardsMatch0.4.3
ORconnectixconnectix_boardsMatch0.4.4
ORconnectixconnectix_boardsMatch0.5
ORconnectixconnectix_boardsMatch0.5.1
ORconnectixconnectix_boardsMatch0.5.2
ORconnectixconnectix_boardsMatch0.5.3
ORconnectixconnectix_boardsMatch0.5.4
ORconnectixconnectix_boardsMatch0.5.5
ORconnectixconnectix_boardsMatch0.6
ORconnectixconnectix_boardsMatch0.6.1
ORconnectixconnectix_boardsMatch0.7
Related
prion
prion
Sql injection
2007-03-03 20:19:00
cve
cve
CVE-2007-1254
2007-03-03 20:19:00
cvelist
cvelist
CVE-2007-1254
2007-03-03 20:00:00
securityvulns
securityvulns
6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
8 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.5%
Related for NVD:CVE-2007-1254