7.5
CVE-2007-1425
- EPSS 1.19%
- Veröffentlicht 13.03.2007 01:19:00
- Zuletzt bearbeitet 16.06.2026 22:37:33
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginSQL injection vulnerability in index.php in Triexa SonicMailer Pro 3.2.3 and earlier allows remote attackers to execute arbitrary SQL commands via the list parameter in an archive action.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Triexa ≫ Sonicmailer Pro Version <= 3.2.3
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.19% | 0.64 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://osvdb.org/33986
http://secunia.com/advisories/24474
http://www.securityfocus.com/bid/22920
http://www.vupen.com/english/advisories/2007/0905
https://www.exploit-db.com/exploits/3457