CVE-2007-1171

Published: Feb 28, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

SQL injection vulnerability in includes/nsbypass.php in NukeSentinel 2.5.05, 2.5.11, and other versions before 2.5.12 allows remote attackers to execute arbitrary SQL commands via an admin cookie.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.waraxe.us/advisory-53.html

x_refsource_MISC

nukesentinel-nsbypass-sql-injection(32582)

vdb-entry

x_refsource_XF

22629

vdb-entry

x_refsource_BID

http://www.nukescripts.net/index.php?op=NEArticle&sid=4076

x_refsource_CONFIRM

20070928 CVE-2007-5125 - dupe

mailing-list

x_refsource_VIM

3337

exploit

x_refsource_EXPLOIT-DB

2344

third-party-advisory

x_refsource_SREASON

20070928 Re: [waraxe-2007-SA#053] - Critical Sql Injection in NukeSentinel 2.5.11

mailing-list

x_refsource_BUGTRAQ

20070220 NukeSentinel 2.5.05 (nsbypass.php) Blind SQL Injection Exploit

mailing-list

x_refsource_BUGTRAQ

20070925 [waraxe-2007-SA#053] - Critical Sql Injection in NukeSentinel 2.5.11

mailing-list

x_refsource_BUGTRAQ

25805

vdb-entry

x_refsource_BID

26954

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2007-1171

Description

Affected Products

References