CVE-2007-3990

EPSS 0.4%
Veröffentlicht 25.07.2007 18:30:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

SQL injection vulnerability in default.asp in Dora Emlak 1.0, when the goster parameter is set to emlakdetay, allows remote attackers to execute arbitrary SQL commands via the id parameter.  NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Asp Indir ≫ Dora Emlak Version1.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.4%	0.576

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://secunia.com/advisories/26173

Vendor Advisory

http://www.securityfocus.com/bid/25004

http://www.vupen.com/english/advisories/2007/2605

https://exchange.xforce.ibmcloud.com/vulnerabilities/35555

https://nvd.nist.gov/vuln/detail/CVE-2007-3990

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-3990

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-3990

EUVD