Lucene search
MitreCVE-2008-2093HistoryMay 06, 2008 - 4:20 p.m.
CVE-2008-2093
2008-05-0616:20:00
CWE-89
mitre
web.nvd.nist.gov
30
sql injection
profiler
component
remote attackers
arbitrary sql commands
user parameter
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.3
Confidence
Low
EPSS
0.001
Percentile
27.8%
SQL injection vulnerability in the Profiler (com_comprofiler) component in Community Builder for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the user parameter in a userProfile action to index.php.
Affected configurations
Node
joomlacom_comprofiler
ORjoomlapoliscommunity_builder
ORmambocom_comprofiler
| Vendor | Product | Version | CPE |
|---|---|---|---|
| joomla | com_comprofiler | * | cpe:2.3:a:joomla:com_comprofiler:*:*:*:*:*:*:*:* |
| joomlapolis | community_builder | * | cpe:2.3:a:joomlapolis:community_builder:*:*:*:*:*:*:*:* |
| mambo | com_comprofiler | * | cpe:2.3:a:mambo:com_comprofiler:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2008-2093
2008-05-06 16:20:00
checkpoint_advisories
checkpoint_advisories
Joomla Community com_comprofiler SQL Injection (CVE-2008-2093)
2014-11-10 00:00:00
prion
prion
Sql injection
2008-05-06 16:20:00
exploitdb
exploitdb
Joomla! Component Community Builder 1.0.1 - Blind SQL Injection
2008-04-23 00:00:00
cvelist
cvelist
CVE-2008-2093
2008-05-06 16:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.3
Confidence
Low
EPSS
0.001
Percentile
27.8%
Related for CVE-2008-2093