Lucene search

K
cve[email protected]CVE-2008-2491
HistoryMay 28, 2008 - 3:32 p.m.

CVE-2008-2491

2008-05-2815:32:00
CWE-89
web.nvd.nist.gov
24
cve-2008-2491
sql injection
adv_cat.php
ablespace 1.0
nvd

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

27.8%

SQL injection vulnerability in adv_cat.php in AbleSpace 1.0 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.

Affected configurations

NVD
Node
hotscriptsablespaceMatch1.0

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

27.8%

Related for CVE-2008-2491