NVD

Id
53183  
Name
CVE-2007-0971  
Description
Multiple SQL injection vulnerabilities in Jupiter CMS 1.1.5 allow remote attackers to execute arbitrary SQL commands via the Client-IP HTTP header and certain other HTTP headers, which set the ip variable that is used in SQL queries performed by index.php and certain other PHP scripts. NOTE: the attack vector might involve _SERVER.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-07  
Published
2007-02-15  
Modified Date
2011-03-07  
Seq
2007-0971  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
269103 53183 CVE-2007-0971 http://mgsdl.free.fr/advisories/12070214.txt  View
269104 53183 CVE-2007-0971 3310  View
269105 53183 CVE-2007-0971 http://www.acid-root.new.fr/advisories/12070214.txt  View
269106 53183 CVE-2007-0971 20070214 Jupiter CMS 1.1.5 Multiple Vulnerabilities  View
269107 53183 CVE-2007-0971 20070214 Re: Jupiter CMS 1.1.5 Multiple Vulnerabilities  View
269108 53183 CVE-2007-0971 22560  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
54696 JVNDB-2007-003388 Jupiter CMS における SQL インジェクションの脆弱性 Jupiter CMS には、SQL インジェクションの脆弱性が存在します。 CVE-2007-0971 24326 CVE-2007-0971 53183 7.5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-003388.html 2007-02-15 2012-09-25 View