CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-4171

SQL injection vulnerability in komentar.php in the Forum Module for auraCMS (Modul Forum Sederhana) allows remote attackers to execute arbitrary SQL commands via the id parameter to the default URI. NOTE: some of these details are obtained from third party information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.011

EPSS Ranking 76.8%

CVSS Severity

CVSS v2 Score 7.5

References

http://osvdb.org/36432
http://secunia.com/advisories/26332
http://www.securityfocus.com/archive/1/475645/100/0/threaded
http://www.securityfocus.com/bid/25202
https://exchange.xforce.ibmcloud.com/vulnerabilities/35814
https://www.exploit-db.com/exploits/4254
http://osvdb.org/36432
http://secunia.com/advisories/26332
http://www.securityfocus.com/archive/1/475645/100/0/threaded
http://www.securityfocus.com/bid/25202
https://exchange.xforce.ibmcloud.com/vulnerabilities/35814
https://www.exploit-db.com/exploits/4254

Products affected by CVE-2007-4171

Auracms » Modul Forum Sederhana » Version: Any

cpe:2.3:a:auracms:modul_forum_sederhana:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-4171

Products

Pricing

Contact Us