7.5
CVE-2007-1556
- EPSS 1.17%
- Veröffentlicht 21.03.2007 01:19:00
- Zuletzt bearbeitet 16.06.2026 22:37:49
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginSQL injection vulnerability in kommentare.php in Creative Files 1.2 allows remote attackers to execute arbitrary SQL commands via the dlid parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Thecreativeheads.De ≫ Creative Files Version1.2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.17% | 0.634 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://osvdb.org/33747
http://www.securityfocus.com/bid/23000
https://exchange.xforce.ibmcloud.com/vulnerabilities/33021
https://www.exploit-db.com/exploits/3498