CVE Vulnerabilities

CVE-2007-1172

Published: Mar 02, 2007 | Modified: Oct 16, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.4 MEDIUM
AV:N/AC:L/Au:N/C:P/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

SQL injection vulnerability in nukesentinel.php in NukeSentinel 2.5.05, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the Client-IP HTTP header, aka the File Disclosure Exploit.

Affected Software

Name Vendor Start Version End Version
Nukesentinel Nukescripts 2.5.05 2.5.05

References