Lucene search

K
cve[email protected]CVE-2008-1791
HistoryApr 15, 2008 - 5:05 p.m.

CVE-2008-1791

2008-04-1517:05:00
CWE-89
web.nvd.nist.gov
28
cve-2008-1791
sql injection
ladder.php
my gaming ladder 7.5
nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.4

Confidence

Low

EPSS

0.001

Percentile

27.8%

SQL injection vulnerability in ladder.php in My Gaming Ladder 7.5 and earlier allows remote attackers to execute arbitrary SQL commands via the ladderid parameter.

Affected configurations

NVD
Node
mygamingladdermygamingladderRange7.0
OR
mygamingladdermygamingladderRange7.5
VendorProductVersionCPE
mygamingladdermygamingladdercpe:/a:mygamingladder:mygamingladder::::

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.4

Confidence

Low

EPSS

0.001

Percentile

27.8%

Related for CVE-2008-1791