ID CVE-2007-3179
Summary Multiple SQL injection vulnerabilities in archives.php in Particle Blogger 1.2.1 and earlier allow remote attackers to execute arbitrary SQL commands via the month parameter and other unspecified vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:particle_blogger:particle_blogger:*:*:*:*:*:*:*:*
    cpe:2.3:a:particle_blogger:particle_blogger:*:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 16-10-2018 - 16:47)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bugtraq 20070530 Particle Blogger 1.2.1 SQL Injection
osvdb 37468
sreason 2799
xf particle-archives-sql-injection(34583)
Last major update 16-10-2018 - 16:47
Published 11-06-2007 - 23:30
Last modified 16-10-2018 - 16:47
Back to Top