7.5
CVE-2007-1909
- EPSS 1.06%
- Veröffentlicht 10.04.2007 23:19:00
- Zuletzt bearbeitet 16.06.2026 22:38:33
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginSQL injection vulnerability in login.php in Ryan Haudenschilt Battle.net Clan Script for PHP 1.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) user or (2) pass parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ryan Haudenschilt ≫ Battle.Net Clan Script Editionphp
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.06% | 0.601 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://osvdb.org/34747
http://secunia.com/advisories/24838
http://www.securityfocus.com/bid/23383
http://www.vupen.com/english/advisories/2007/1313
https://www.exploit-db.com/exploits/3691