7.5
CVE-2007-2622
- EPSS 1.26%
- Veröffentlicht 11.05.2007 16:19:00
- Zuletzt bearbeitet 16.06.2026 22:39:59
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMultiple SQL injection vulnerabilities in TaskDriver 1.2 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the username parameter to login.php or (2) the taskid parameter to notes.php.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Taskdriver ≫ Taskdriver Version <= 1.2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.26% | 0.657 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://osvdb.org/35972
http://osvdb.org/35973
http://secunia.com/advisories/25221
http://www.securityfocus.com/bid/23919
http://www.vupen.com/english/advisories/2007/1768
https://exchange.xforce.ibmcloud.com/vulnerabilities/34249
https://www.exploit-db.com/exploits/3896