cpe:/a:nukescripts:nukesentinel:2.5.12 CVE-2007-5151 2007-10-01T01:17:00.000-04:00 2011-03-07T22:00:10.313-05:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2007-10-01T13:29:00.000-04:00 ALLOWS_OTHER_ACCESS BUGTRAQ 20070927 [waraxe-2007-SA#058] - Critical Sql Injection in NukeSentinel 2.5.12 BID 25830 SECUNIA 26990 VUPEN ADV-2007-3308 MISC http://www.waraxe.us/advisory-58.html SQL injection vulnerability in the abget_admin function in includes/nukesentinel.php in NukeSentinel 2.5.12 allows remote attackers to execute arbitrary SQL commands via base64-encoded data in an admin cookie.