NVD

Id
53379  
Name
CVE-2007-1172  
Description
SQL injection vulnerability in nukesentinel.php in NukeSentinel 2.5.05, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the Client-IP HTTP header, aka the "File Disclosure Exploit."  
Reject
 
CVSS Version
2  
CVSS Score
6.4  
Severity
Medium  
CVSS Base Score
6.4  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:N)  
Pub Date
2017-01-07  
Published
2007-03-02  
Modified Date
2008-09-05  
Seq
2007-1172  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
270224 53379 CVE-2007-1172 20070314 SQL injection (x2) in NukeSentinel  View
270225 53379 CVE-2007-1172 2341  View
270226 53379 CVE-2007-1172 3338  View
270227 53379 CVE-2007-1172 20070220 NukeSentinel 2.5.05 (nukesentinel.php) File Disclosure Exploit  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
54752 JVNDB-2007-003444 NukeSentinel の nukesentinel.php における SQL インジェクションの脆弱性 NukeSentinel の nukesentinel.php には、SQL インジェクションの脆弱性が存在します。 CVE-2007-1172 24527 CVE-2007-1172 53379 6.4 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-003444.html 2007-03-02 2012-09-25 View