Lucene search

[email protected]CVE-2008-2560

HistoryJun 06, 2008 - 6:32 p.m.

CVE-2008-2560

2008-06-0618:32:00

CWE-89

[email protected]

web.nvd.nist.gov

sql injection

427bb 2.3.1

vulnerability

showpost.php

remote attackers

nvd

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

50.6%

JSON

SQL injection vulnerability in showpost.php in 427BB 2.3.1 allows remote attackers to execute arbitrary SQL commands via the post parameter.

Affected configurations

NVD

Node

fourtwosevenbb427bbMatch2.3.1

CPENameOperatorVersion
fourtwosevenbb:427bbfourtwosevenbb 427bbeq2.3.1

CPE	Name	Operator	Version
fourtwosevenbb:427bb	fourtwosevenbb 427bb	eq	2.3.1

References

secunia.com/advisories/30520

www.securityfocus.com/bid/29564

exchange.xforce.ibmcloud.com/vulnerabilities/42876

www.exploit-db.com/exploits/5742

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

50.6%

JSON

Related for CVE-2008-2560

prion1 cvelist1 nvd1