Vulnerabilities > CVE-2007-2554 - Remote Security vulnerability in Newspower
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
COMPLETE Availability impact
NONE Summary
Associated Press (AP) Newspower 4.0.1 and earlier uses a default blank password for the MySQL root account, which allows remote attackers to insert or modify news articles via shows.tblscript.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |