CVE-2007-1786

critical

Description

SQL injection vulnerability in Hitachi Collaboration - Online Community Management 01-00 through 01-30, as used in Groupmax Collaboration Portal, Groupmax Collaboration Web Client, uCosminexus Collaboration Portal, Cosminexus Collaboration Portal, and uCosminexus Content Manager, allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/33348

http://www.vupen.com/english/advisories/2007/1168

http://www.securityfocus.com/bid/23208

http://www.hitachi-support.com/security_e/vuls_e/HS07-008_e/index-e.html

http://secunia.com/advisories/24693

http://osvdb.org/34544

Details

Source: Mitre, NVD

Published: 2007-03-31

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.00609