nvd-json-data-feeds/CVE-2007/CVE-2007-65xx/CVE-2007-6518.json

{
  "id": "CVE-2007-6518",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2007-12-24T20:46:00.000",
  "lastModified": "2018-10-15T21:54:55.477",
  "vulnStatus": "Modified",
  "descriptions": [
    {
      "lang": "en",
      "value": "Multiple SQL injection vulnerabilities in search.php in WoltLab Burning Board (wBB) Lite 1.0.2 pl3e allow remote attackers to execute arbitrary SQL commands via the (1) showposts, (2) sortby, and (3) sortorder parameters."
    },
    {
      "lang": "es",
      "value": "M\u00faltiples vulnerabilidades de inyecci\u00f3n SQL en search.php en WoltLab Burning Board (wBB) Lite 1.0.2 pl3e permite a atacantes remotos ejecutar comandos de SQL de su elecci\u00f3n a trav\u00e9s de los par\u00e1metros (1) showposts, (2) sortby, y (3) sortorder."
    }
  ],
  "metrics": {
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "accessVector": "NETWORK",
          "accessComplexity": "LOW",
          "authentication": "NONE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5
        },
        "baseSeverity": "HIGH",
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-89"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:woltlab:burning_board_lite:1.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "47A4FDEE-C9F9-4F17-98CB-5F9714041C19"
            },
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:woltlab:burning_board_lite:1.0.2_pl3e:*:*:*:*:*:*:*",
              "matchCriteriaId": "95D354C3-ACC4-430F-A659-379517BC62F5"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "http://www.securityfocus.com/archive/1/485408/100/0/threaded",
      "source": "cve@mitre.org"
    },
    {
      "url": "http://www.securityfocus.com/bid/26973",
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ]
    },
    {
      "url": "http://www.vupen.com/english/advisories/2007/4300",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39174",
      "source": "cve@mitre.org"
    }
  ]
}
bootstrap 2023-04-24 12:24:31 +02:00			`{`
			`"id": "CVE-2007-6518",`
			`"sourceIdentifier": "cve@mitre.org",`
			`"published": "2007-12-24T20:46:00.000",`
			`"lastModified": "2018-10-15T21:54:55.477",`
			`"vulnStatus": "Modified",`
			`"descriptions": [`
			`{`
			`"lang": "en",`
			`"value": "Multiple SQL injection vulnerabilities in search.php in WoltLab Burning Board (wBB) Lite 1.0.2 pl3e allow remote attackers to execute arbitrary SQL commands via the (1) showposts, (2) sortby, and (3) sortorder parameters."`
			`},`
			`{`
			`"lang": "es",`
			`"value": "M\u00faltiples vulnerabilidades de inyecci\u00f3n SQL en search.php en WoltLab Burning Board (wBB) Lite 1.0.2 pl3e permite a atacantes remotos ejecutar comandos de SQL de su elecci\u00f3n a trav\u00e9s de los par\u00e1metros (1) showposts, (2) sortby, y (3) sortorder."`
			`}`
			`],`
			`"metrics": {`
			`"cvssMetricV2": [`
			`{`
			`"source": "nvd@nist.gov",`
			`"type": "Primary",`
			`"cvssData": {`
			`"version": "2.0",`
			`"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",`
			`"accessVector": "NETWORK",`
			`"accessComplexity": "LOW",`
			`"authentication": "NONE",`
			`"confidentialityImpact": "PARTIAL",`
			`"integrityImpact": "PARTIAL",`
			`"availabilityImpact": "PARTIAL",`
			`"baseScore": 7.5`
			`},`
			`"baseSeverity": "HIGH",`
			`"exploitabilityScore": 10.0,`
			`"impactScore": 6.4,`
			`"acInsufInfo": false,`
			`"obtainAllPrivilege": false,`
			`"obtainUserPrivilege": false,`
			`"obtainOtherPrivilege": false,`
			`"userInteractionRequired": false`
			`}`
			`]`
			`},`
			`"weaknesses": [`
			`{`
			`"source": "nvd@nist.gov",`
			`"type": "Primary",`
			`"description": [`
			`{`
			`"lang": "en",`
			`"value": "CWE-89"`
			`}`
			`]`
			`}`
			`],`
			`"configurations": [`
			`{`
			`"nodes": [`
			`{`
			`"operator": "OR",`
			`"negate": false,`
			`"cpeMatch": [`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:a:woltlab:burning_board_lite:1.0.2:::::::*",`
			`"matchCriteriaId": "47A4FDEE-C9F9-4F17-98CB-5F9714041C19"`
			`},`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:a:woltlab:burning_board_lite:1.0.2_pl3e:::::::*",`
			`"matchCriteriaId": "95D354C3-ACC4-430F-A659-379517BC62F5"`
			`}`
			`]`
			`}`
			`]`
			`}`
			`],`
			`"references": [`
			`{`
			`"url": "http://www.securityfocus.com/archive/1/485408/100/0/threaded",`
			`"source": "cve@mitre.org"`
			`},`
			`{`
			`"url": "http://www.securityfocus.com/bid/26973",`
			`"source": "cve@mitre.org",`
			`"tags": [`
			`"Exploit"`
			`]`
			`},`
			`{`
			`"url": "http://www.vupen.com/english/advisories/2007/4300",`
			`"source": "cve@mitre.org"`
			`},`
			`{`
			`"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39174",`
			`"source": "cve@mitre.org"`
			`}`
			`]`
			`}`