CyberSec.Space Logo
CVEブラウザに戻る

CVE-2007-0053

HIGH
7.5
CVSS Severity Score
EPSS Score0.0730%
EPSS Percentile2.56th
Published2007年1月4日
Last Modified2026年4月23日

Vulnerability Description

SQL injection vulnerability in detail.asp in ASP SiteWare autoDealer 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the iPro parameter.

Affected Platforms (CPE)

📦
Asp Siteware

Autodealer

<= 2.0

References & Advisories

🔗 http://osvdb.org/32539
🔗 http://secunia.com/advisories/23572
🔗 http://www.securityfocus.com/bid/21833
🔗 http://www.vupen.com/english/advisories/2007/0016
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/31219
🔗 https://www.exploit-db.com/exploits/3062
🔗 http://osvdb.org/32539
🔗 http://secunia.com/advisories/23572

関連する脆弱性情報

CVE-2008-40737.5

SQL injection vulnerability in index.php in Zanfi Autodealers CMS AutOnline allows remote attackers to execute arbitrary SQL comma...

CVE-2008-40747.5

SQL injection vulnerability in index.php in Zanfi Autodealers CMS AutOnline allows remote attackers to execute arbitrary SQL comma...

CVE-2008-55957.5

SQL injection vulnerability in detail.asp in ASP AutoDealer allows remote attackers to execute arbitrary SQL commands via the ID p...

CVE-2008-68747.5

Multiple SQL injection vulnerabilities in ASP SiteWare autoDealer 1 and 2 allow remote attackers to execute arbitrary SQL commands...