Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2007-0223

Published: 13/01/2007 Updated: 29/07/2017
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to All In One Control Panel

Vulnerability Summary

SQL injection vulnerability in shared/code/cp_functions_downloads.php in Nicola Asuni All In One Control Panel (AIOCP) prior to 1.3.009 allows remote malicious users to execute arbitrary SQL commands via the download_category parameter.

Vulnerable Product Search on Vulmon Subscribe to Product

nicola asuni all in one control panel 1.3.000

nicola asuni all in one control panel 1.3.001

nicola asuni all in one control panel 1.3.002

nicola asuni all in one control panel 1.3.003

nicola asuni all in one control panel 1.3.004

nicola asuni all in one control panel 1.3.005

nicola asuni all in one control panel 1.3.006

nicola asuni all in one control panel 1.3.007

nicola asuni all in one control panel 1.3.008

References

NVD-CWE-Otherhttp://sourceforge.net/project/shownotes.php?release_id=477845http://secunia.com/advisories/23726http://www.securityfocus.com/bid/22019http://osvdb.org/31641https://exchange.xforce.ibmcloud.com/vulnerabilities/31591https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991CVE-2024-32674path traversalCVE-2023-21987denial of servicedosCVE-2024-4647CVE-2024-25519CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook