7.5
CVE-2007-1510
- EPSS 2%
- Veröffentlicht 20.03.2007 10:19:00
- Zuletzt bearbeitet 16.06.2026 22:37:43
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginSQL injection vulnerability in post.php in Particle Blogger 1.0.0 through 1.2.0 allows remote attackers to execute arbitrary SQL commands via the postid parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Particle Blogger ≫ Particle Blogger Version1.0.0
Particle Blogger ≫ Particle Blogger Version1.2.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2% | 0.782 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://forums.particlesoft.net/viewtopic.php?t=675
http://osvdb.org/34305
http://secunia.com/advisories/24559
http://securityreason.com/securityalert/2460
http://www.securityfocus.com/archive/1/463027/100/0/threaded
http://www.securityfocus.com/bid/23005
http://www.vupen.com/english/advisories/2007/1006
https://exchange.xforce.ibmcloud.com/vulnerabilities/33030
https://www.exploit-db.com/exploits/3500