CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-5986

SQL injection vulnerability in include/functions.php in BtiTracker before 1.4.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.1%

CVSS Severity

CVSS v2 Score 7.5

References

http://secunia.com/advisories/27550
http://sourceforge.net/forum/forum.php?forum_id=752472
http://sourceforge.net/project/shownotes.php?release_id=552477
http://www.securityfocus.com/bid/26551
https://exchange.xforce.ibmcloud.com/vulnerabilities/38415
http://secunia.com/advisories/27550
http://sourceforge.net/forum/forum.php?forum_id=752472
http://sourceforge.net/project/shownotes.php?release_id=552477
http://www.securityfocus.com/bid/26551
https://exchange.xforce.ibmcloud.com/vulnerabilities/38415

Products affected by CVE-2007-5986

Btiteam » Btitracker » Version: Any

cpe:2.3:a:btiteam:btitracker:*
Btiteam » Btitracker » Version: 1.3.2

cpe:2.3:a:btiteam:btitracker:1.3.2
Btiteam » Btitracker » Version: 1.4.1

cpe:2.3:a:btiteam:btitracker:1.4.1
Btiteam » Btitracker » Version: 1.4.2

cpe:2.3:a:btiteam:btitracker:1.4.2
Btiteam » Btitracker » Version: 1.4.3

cpe:2.3:a:btiteam:btitracker:1.4.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-5986

Products

Pricing

Contact Us