Lucene search

K
cve[email protected]CVE-2008-1843
HistoryApr 16, 2008 - 5:05 p.m.

CVE-2008-1843

2008-04-1617:05:00
CWE-89
web.nvd.nist.gov
13
cve-2008-1843
sql injection
w2b datingclub
browse.php
remote attackers
arbitrary sql commands

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

47.0%

SQL injection vulnerability in browse.php in W2B DatingClub (aka Dating Club) allows remote attackers to execute arbitrary SQL commands via the age_to parameter in a browsebyCat action.

Affected configurations

NVD
Node
w2bdating_club
CPENameOperatorVersion
w2b:dating_clubw2b dating clubeq*

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

47.0%

Related for CVE-2008-1843