Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6202

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2007-6202
Last Modified 15 Nov 2008 02:03:45
Published 01 Dec 2007 01:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-6202

Summary

SQL injection vulnerability in plugins/search/search.php in Neocrome Seditio CMS 121 and earlier allows remote attackers to execute arbitrary SQL commands via the pag_sub[] parameter to plug.php.

Vulnerable Systems

Application

  • Neocrome Seditio 121


References

CONFIRM - http://www.neocrome.net/page.php?id=2349

BID - 26655

MILW0RM - 4678

SECUNIA - 27881

OSVDB - 38924

XF - seditio-pagsub-sql-injection(38774)


Last Updated: 27 May 2016 10:46:24