Lucene search
HistoryNov 13, 2008 - 11:30 a.m.
CVE-2008-5055
sql injection
activecampaign
triolive
department_offline_context.php
remote code execution
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.4 High
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.2%
SQL injection vulnerability in department_offline_context.php in ActiveCampaign TrioLive before 1.58.7 allows remote attackers to execute arbitrary SQL commands via the department_id parameter to index.php.
Affected configurations
Node
activecampaigntrioliveRange≤1.58.6
ORactivecampaigntrioliveMatch1.0
ORactivecampaigntrioliveMatch1.03
ORactivecampaigntrioliveMatch1.04
ORactivecampaigntrioliveMatch1.05
ORactivecampaigntrioliveMatch1.06
ORactivecampaigntrioliveMatch1.07
ORactivecampaigntrioliveMatch1.08
ORactivecampaigntrioliveMatch1.09
ORactivecampaigntrioliveMatch1.10
ORactivecampaigntrioliveMatch1.11
ORactivecampaigntrioliveMatch1.12
ORactivecampaigntrioliveMatch1.13
ORactivecampaigntrioliveMatch1.14
ORactivecampaigntrioliveMatch1.15
ORactivecampaigntrioliveMatch1.16
ORactivecampaigntrioliveMatch1.17
ORactivecampaigntrioliveMatch1.18
ORactivecampaigntrioliveMatch1.19
ORactivecampaigntrioliveMatch1.20
ORactivecampaigntrioliveMatch1.21
ORactivecampaigntrioliveMatch1.22
ORactivecampaigntrioliveMatch1.23
ORactivecampaigntrioliveMatch1.24
ORactivecampaigntrioliveMatch1.25
ORactivecampaigntrioliveMatch1.26
ORactivecampaigntrioliveMatch1.27
ORactivecampaigntrioliveMatch1.28
ORactivecampaigntrioliveMatch1.29
ORactivecampaigntrioliveMatch1.30
ORactivecampaigntrioliveMatch1.31
ORactivecampaigntrioliveMatch1.32
ORactivecampaigntrioliveMatch1.33
ORactivecampaigntrioliveMatch1.34
ORactivecampaigntrioliveMatch1.35
ORactivecampaigntrioliveMatch1.36
ORactivecampaigntrioliveMatch1.37
ORactivecampaigntrioliveMatch1.39
ORactivecampaigntrioliveMatch1.40
ORactivecampaigntrioliveMatch1.41
ORactivecampaigntrioliveMatch1.42
ORactivecampaigntrioliveMatch1.50.1
ORactivecampaigntrioliveMatch1.50.2
ORactivecampaigntrioliveMatch1.50.3
ORactivecampaigntrioliveMatch1.50.4
ORactivecampaigntrioliveMatch1.50.5
ORactivecampaigntrioliveMatch1.50.6
ORactivecampaigntrioliveMatch1.55.0
ORactivecampaigntrioliveMatch1.55.1
ORactivecampaigntrioliveMatch1.55.2
ORactivecampaigntrioliveMatch1.56.1
ORactivecampaigntrioliveMatch1.56.2
ORactivecampaigntrioliveMatch1.56.3
ORactivecampaigntrioliveMatch1.56.4
ORactivecampaigntrioliveMatch1.56.5
ORactivecampaigntrioliveMatch1.57
ORactivecampaigntrioliveMatch1.58.0
ORactivecampaigntrioliveMatch1.58.1
ORactivecampaigntrioliveMatch1.58.2
ORactivecampaigntrioliveMatch1.58.3
ORactivecampaigntrioliveMatch1.58.4
ORactivecampaigntrioliveMatch1.58.5
ORactivecampaigntrioliveMatchunknownbeta2
ORactivecampaigntrioliveMatchunknownbeta3
ORactivecampaigntrioliveMatchunknownbeta5
Related
prion
prion
Sql injection
2008-11-13 11:30:00
nvd
nvd
CVE-2008-5055
2008-11-13 11:30:01
cvelist
cvelist
CVE-2008-5055
2008-11-13 11:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.4 High
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.2%
Related for CVE-2008-5055