Lucene search
HistoryApr 11, 2007 - 10:19 a.m.
CVE-2007-1960
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.3
Confidence
Low
EPSS
0.001
Percentile
41.1%
SQL injection vulnerability in visit.php in the Rha7 Downloads (rha7downloads) 1.0 module for XOOPS, and possibly other versions up to 1.10, allows remote attackers to execute arbitrary SQL commands via the lid parameter.
Affected configurations
Node
xoopsrha7_downloads_moduleMatch1.0
ORxoopsrha7_downloads_moduleMatch1.10
| Vendor | Product | Version | CPE |
|---|---|---|---|
| xoops | rha7_downloads_module | 1.0 | cpe:2.3:a:xoops:rha7_downloads_module:1.0:*:*:*:*:*:*:* |
| xoops | rha7_downloads_module | 1.10 | cpe:2.3:a:xoops:rha7_downloads_module:1.10:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
XOOPS Module Rha7 Downloads 1.0 - 'visit.php' SQL Injection
2007-04-04 00:00:00
cvelist
cvelist
CVE-2007-1960
2007-04-11 10:00:00
CVE-2007-2107
2007-04-18 10:00:00
cve
cve
CVE-2007-1960
2007-04-11 10:19:00
CVE-2007-2107
2007-04-18 10:19:00
prion
prion
Sql injection
2007-04-11 10:19:00
Sql injection
2007-04-18 10:19:00
nvd
nvd
CVE-2007-2107
2007-04-18 10:19:00
securityvulns
securityvulns
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.3
Confidence
Low
EPSS
0.001
Percentile
41.1%
Related for NVD:CVE-2007-1960