Vulnerability Details CVE-2007-1425
SQL injection vulnerability in index.php in Triexa SonicMailer Pro 3.2.3 and earlier allows remote attackers to execute arbitrary SQL commands via the list parameter in an archive action.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.9%
CVSS Severity
CVSS v2 Score 7.5
References
- http://osvdb.org/33986
- http://secunia.com/advisories/24474
- http://www.securityfocus.com/bid/22920
- http://www.vupen.com/english/advisories/2007/0905
- https://www.exploit-db.com/exploits/3457
- http://osvdb.org/33986
- http://secunia.com/advisories/24474
- http://www.securityfocus.com/bid/22920
- http://www.vupen.com/english/advisories/2007/0905
- https://www.exploit-db.com/exploits/3457
Products affected by CVE-2007-1425
-
cpe:2.3:a:triexa:sonicmailer_pro:*