CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-6559

Multiple SQL injection vulnerabilities in Logaholic before 2.0 RC8 allow remote attackers to execute arbitrary SQL commands via (1) the from parameter to index.php or (2) the page parameter to update.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.6%

CVSS Severity

CVSS v2 Score 7.5

References

http://osvdb.org/39790
http://osvdb.org/39791
http://secunia.com/advisories/28263
http://securityreason.com/securityalert/3496
http://www.securityfocus.com/archive/1/485480/100/0/threaded
http://www.securityfocus.com/archive/1/490101/100/0/threaded
http://www.securityfocus.com/bid/27003
http://osvdb.org/39790
http://osvdb.org/39791
http://secunia.com/advisories/28263
http://securityreason.com/securityalert/3496
http://www.securityfocus.com/archive/1/485480/100/0/threaded
http://www.securityfocus.com/archive/1/490101/100/0/threaded
http://www.securityfocus.com/bid/27003

Products affected by CVE-2007-6559

Logaholic » Logaholic » Version: 0

cpe:2.3:a:logaholic:logaholic:0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-6559

Products

Pricing

Contact Us