CVE-2007-1172

CVE-2007-1172 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:P/A:N

SQL injection vulnerability in nukesentinel.php in NukeSentinel 2.5.05, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the Client-IP HTTP header, aka the "File Disclosure Exploit."

Learn more about our Web Application Penetration Testing UK.