Lucene search

[email protected]CVE-2008-0327

HistoryJan 17, 2008 - 10:00 p.m.

CVE-2008-0327

2008-01-1722:00:00

CWE-89

[email protected]

web.nvd.nist.gov

sql injection

fascript

famp3

vulnerability

nvd

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

37.4%

JSON

SQL injection vulnerability in show.php in FaScript FaMp3 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.

Affected configurations

NVD

Node

fascriptfamp3Match1.0

CPENameOperatorVersion
fascript:famp3fascript famp3eq1.0

CPE	Name	Operator	Version
fascript:famp3	fascript famp3	eq	1.0

References

osvdb.org/40330

secunia.com/advisories/28566

www.securityfocus.com/bid/27302

exchange.xforce.ibmcloud.com/vulnerabilities/39714

www.exploit-db.com/exploits/4914

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

37.4%

JSON

Related for CVE-2008-0327

cvelist1 nvd1 prion1