admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-06-12 02:04:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2007/CVE-2007-01xx/CVE-2007-0122.json
cad-safe-bot db95377d9f Auto-Update: 2024-04-04T08:42:25.815847+00:00
2024-04-04 08:46:00 +00:00

193 lines
6.8 KiB
JSON
Raw Blame History

{
"id": "CVE-2007-0122",
"sourceIdentifier": "cve@mitre.org",
"published": "2007-01-09T02:28:00.000",
"lastModified": "2018-10-16T16:31:18.510",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
"value": "Multiple SQL injection vulnerabilities in Coppermine Photo Gallery 1.4.10 and earlier allow remote authenticated administrators to execute arbitrary SQL commands via (1) the cat parameter to albmgr.php, and possibly (2) the gid parameter to usermgr.php; (3) the start parameter to db_ecard.php; and the albumid parameter to unspecified files, related to the (4) filename_to_title and (5) del_titles functions."
},
{
"lang": "es",
"value": "M\u00faltiples vulnerabilidades de inyecci\u00f3n SQL en Coppermine Photo Gallery 1.4.10 y anteriores permiten a administradores autenticados remotamente ejecutar comandos SQL de su elecci\u00f3n a trav\u00e9s del par\u00e1metro (1) cat de albmgr.php, y posiblemente (2) el par\u00e1metro gid de usermgr.php; (3) el par\u00e1metro start de db_ecard.php; y el par\u00e1metro albumid de archivos no especificados, relacionados con las funciones (4) filename_to_title y (5) del_titles."
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "SINGLE",
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"availabilityImpact": "PARTIAL",
"baseScore": 6.5
},
"baseSeverity": "MEDIUM",
"exploitabilityScore": 8.0,
"impactScore": 6.4,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": true,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:coppermine:coppermine_photo_gallery:*:*:*:*:*:*:*:*",
"versionEndIncluding": "1.4.10",
"matchCriteriaId": "7E1F67DD-8ED5-4E97-9EBE-3EDC01DE60BB"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:coppermine:coppermine_photo_gallery:1.0:*:*:*:*:*:*:*",
"matchCriteriaId": "B04BAAEE-4047-47BE-AB93-3B3C923EF78F"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:coppermine:coppermine_photo_gallery:1.0_rc3:*:*:*:*:*:*:*",
"matchCriteriaId": "D3479C85-5B30-43FE-9492-5438D27B8DC3"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:coppermine:coppermine_photo_gallery:1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "304B545E-1B2D-4794-B007-9562C027469D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:coppermine:coppermine_photo_gallery:1.1_beta_2:*:*:*:*:*:*:*",
"matchCriteriaId": "8FCDC744-DAF3-449C-B3AE-BA420A636CBB"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:coppermine:coppermine_photo_gallery:1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "7CDBEDCE-787D-4523-A209-0CCFD6E41064"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:coppermine:coppermine_photo_gallery:1.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "A6BBC5F9-1E40-47FF-9371-FD0C7A9458D5"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:coppermine:coppermine_photo_gallery:1.2.2_b:*:*:*:*:*:*:*",
"matchCriteriaId": "C7292845-96FB-48BF-935F-9BD7772AFD16"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:coppermine:coppermine_photo_gallery:1.2.2_b-nuke:*:*:*:*:*:*:*",
"matchCriteriaId": "2C635ED6-287F-426A-B19A-B92FB8A5CC3F"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:coppermine:coppermine_photo_gallery:1.3:*:*:*:*:*:*:*",
"matchCriteriaId": "AB182E1B-9E32-46CA-9B49-5029107955D5"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:coppermine:coppermine_photo_gallery:1.3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "6DD2CA54-6534-4A4F-9667-8A594B7E43CD"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:coppermine:coppermine_photo_gallery:1.3.3:*:*:*:*:*:*:*",
"matchCriteriaId": "BFF90F7F-070C-4ABE-8F94-7192F18B1A9D"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:coppermine:coppermine_photo_gallery:1.3.4:*:*:*:*:*:*:*",
"matchCriteriaId": "91D223FD-D53B-45DA-AB15-B446ADA7B0A6"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:coppermine:coppermine_photo_gallery:1.4.4:*:*:*:*:*:*:*",
"matchCriteriaId": "4D3BB681-16F8-441F-912C-9488791A6420"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:coppermine:coppermine_photo_gallery:1.4.9:*:*:*:*:*:*:*",
"matchCriteriaId": "D7A89B92-8323-4240-80CE-102070202A09"
}
]
}
]
}
],
"references": [
{
"url": "http://acid-root.new.fr/poc/19070104.txt",
"source": "cve@mitre.org"
},
{
"url": "http://osvdb.org/35852",
"source": "cve@mitre.org"
},
{
"url": "http://osvdb.org/35853",
"source": "cve@mitre.org"
},
{
"url": "http://osvdb.org/35854",
"source": "cve@mitre.org"
},
{
"url": "http://osvdb.org/35855",
"source": "cve@mitre.org"
},
{
"url": "http://osvdb.org/35856",
"source": "cve@mitre.org"
},
{
"url": "http://secunia.com/advisories/25846",
"source": "cve@mitre.org"
},
{
"url": "http://securityreason.com/securityalert/2123",
"source": "cve@mitre.org"
},
{
"url": "http://www.securityfocus.com/archive/1/456051/100/0/threaded",
"source": "cve@mitre.org"
},
{
"url": "http://www.securityfocus.com/bid/21894",
"source": "cve@mitre.org",
"tags": [
"Exploit"
]
},
{
"url": "https://www.exploit-db.com/exploits/3085",
"source": "cve@mitre.org"
}
]
}
Reference in New Issue View Git Blame Copy Permalink