CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-6275

SQL injection vulnerability in modules/adresses/ratefile.php in bcoos 1.0.10 and earlier allows remote attackers to execute arbitrary SQL commands via the lid parameter, a different vector than CVE-2007-6266.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.4%

CVSS Severity

CVSS v2 Score 7.5

References

http://lostmon.blogspot.com/2007/11/bcoops-adressesratefilephp-lid-variable.html
http://secunia.com/advisories/26945
http://lostmon.blogspot.com/2007/11/bcoops-adressesratefilephp-lid-variable.html
http://secunia.com/advisories/26945

Products affected by CVE-2007-6275

Bcoos » Bcoos » Version: Any

cpe:2.3:a:bcoos:bcoos:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-6275

Products

Pricing

Contact Us