CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-1603

admin/contest.php in Weekly Drawing Contest 0.0.1 allows remote attackers to bypass authentication, and insert new contest information into a database, via a direct POST request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.0%

CVSS Severity

CVSS v2 Score 7.5

References

http://securityreason.com/securityalert/2453
http://www.securityfocus.com/archive/1/462702/100/100/threaded
http://securityreason.com/securityalert/2453
http://www.securityfocus.com/archive/1/462702/100/100/threaded

Products affected by CVE-2007-1603

Weekly Drawing Contest » Weekly Drawing Contest » Version: 0.0.1

cpe:2.3:a:weekly_drawing_contest:weekly_drawing_contest:0.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-1603

Products

Pricing

Contact Us