6.5
CVE-2007-3592
- EPSS 1.14%
- Veröffentlicht 06.07.2007 18:30:00
- Zuletzt bearbeitet 16.06.2026 22:42:20
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginPM.php in Elite Bulletin Board before 1.0.10 allows remote authenticated users to delete arbitrary PM messages and conduct other attacks via modified id fields.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.14% | 0.625 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.5 | 8 | 6.4 |
AV:N/AC:L/Au:S/C:P/I:P/A:P
|
http://secunia.com/advisories/25926
http://sourceforge.net/project/shownotes.php?release_id=520558&group_id=175118
http://www.securityfocus.com/bid/24763
http://osvdb.org/37820
https://exchange.xforce.ibmcloud.com/vulnerabilities/35262