Lucene search

[email protected]CVE-2008-6042

HistoryFeb 03, 2009 - 11:30 a.m.

CVE-2008-6042

2009-02-0311:30:00

CWE-89

[email protected]

web.nvd.nist.gov

cve-2008-6042

sql injection

netartmedia

real estate portal 2.0

security vulnerability

nvd

8.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

27.6%

JSON

SQL injection vulnerability in the re_search module in NetArtMedia Real Estate Portal 2.0 allows remote attackers to execute arbitrary SQL commands via the ad parameter to index.php.

Affected configurations

NVD

Node

netartmediareal_estate_portalMatch2.0

CPENameOperatorVersion
netartmedia:real_estate_portalnetartmedia real estate portaleq2.0

CPE	Name	Operator	Version
netartmedia:real_estate_portal	netartmedia real estate portal	eq	2.0

References

secunia.com/advisories/31940

www.securityfocus.com/bid/31280

exchange.xforce.ibmcloud.com/vulnerabilities/45271

www.exploit-db.com/exploits/6518

8.7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.001 Low

EPSS

Percentile

27.6%

JSON

Related for CVE-2008-6042

cvelist1 prion1 nvd1