Lucene search
MitreCVE-2008-5652HistoryDec 17, 2008 - 6:30 p.m.
CVE-2008-5652
2008-12-1718:30:01
CWE-89
mitre
web.nvd.nist.gov
29
cve-2008-5652
sql injection
easybookmarker 4.0
ajaxp.php
remote attackers
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.4
Confidence
Low
EPSS
0.004
Percentile
73.2%
SQL injection vulnerability in the loginADP function in ajaxp.php in MyioSoft EasyBookMarker 4.0 allows remote attackers to execute arbitrary SQL commands via the rsargs parameter, as reachable through the username parameter. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
myiosofteasybookmarkerMatch4.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| myiosoft | easybookmarker | 4.0 | cpe:2.3:a:myiosoft:easybookmarker:4.0:*:*:*:*:*:*:* |
Related
prion
prion
Sql injection
2008-12-17 18:30:00
cvelist
cvelist
CVE-2008-5652
2008-12-17 18:00:00
nvd
nvd
CVE-2008-5652
2008-12-17 18:30:01
exploitdb
exploitdb
MyioSoft EasyBookMarker 4.0 - Authentication Bypass
2008-11-07 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.4
Confidence
Low
EPSS
0.004
Percentile
73.2%
Related for CVE-2008-5652