Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5180

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-5180
Last Modified 08 Sep 2011 12:00:00
Published 03 Oct 2007 10:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5180

Summary

Multiple SQL injection vulnerabilities in Ohesa Emlak Portali allow remote attackers to execute arbitrary SQL commands via the (1) Kategori parameter in satilik.asp and the (2) Emlak parameter in detay.asp.

Vulnerable Systems

Application

  • Ohesa Emlak Portali


References

XF - ohesa-satilikdetay-sql-injection(36877)

VUPEN - ADV-2007-3319

BID - 25880

SECUNIA - 27033

MISC - http://packetstormsecurity.org/0709-exploits/ohesa-sql.txt

OSVDB - 37408

OSVDB - 37407


Last Updated: 27 May 2016 10:46:06