Lucene search

[email protected]CVE-2008-5309

HistoryDec 02, 2008 - 12:00 p.m.

CVE-2008-5309

2008-12-0212:00:02

CWE-89

[email protected]

web.nvd.nist.gov

cve-2008-5309

sql injection

netart media

real estate portal

nvd

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

43.5%

JSON

SQL injection vulnerability in NetArt Media Real Estate Portal 1.2 allows remote attackers to execute arbitrary SQL commands via the ad_id parameter in the re_send_email module to index.php.

Affected configurations

NVD

Node

netart_mediareal_estate_portalMatch1.2

CPENameOperatorVersion
netart_media:real_estate_portalnetart media real estate portaleq1.2

CPE	Name	Operator	Version
netart_media:real_estate_portal	netart media real estate portal	eq	1.2

References

securityreason.com/securityalert/4675

www.securityfocus.com/bid/32445

exchange.xforce.ibmcloud.com/vulnerabilities/46808

www.exploit-db.com/exploits/7208

8.4 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

43.5%

JSON

Related for CVE-2008-5309

prion1 nvd1 cvelist1