CVE-2007-3573

Medium

6.8/10

Summary

Multiple SQL injection vulnerabilities in akocomment allow remote attackers to execute arbitrary SQL commands via the (1) acparentid or (2) acitemid parameter to an unspecified component, different vectors than CVE-2006-1421.

Access Complexity: MEDIUM
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: PARTIAL

References

Advisory Timeline

Published Jul 05, 2007

CVE-2007-3573

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS