Lucene search

[email protected]CVE-2008-6484

HistoryMar 18, 2009 - 3:30 p.m.

CVE-2008-6484

2009-03-1815:30:00

CWE-89

[email protected]

web.nvd.nist.gov

cve-2008-6484

sql injection

mole group taxi map script

taxi calc dist script

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

37.7%

JSON

SQL injection vulnerability in login.php in Mole Group Taxi Map Script (aka Taxi Calc Dist Script) allows remote attackers to execute arbitrary SQL commands via the user field.

Affected configurations

NVD

Node

mole-grouptaxi_calc_dist_scriptMatch-

CPENameOperatorVersion
mole-group:taxi_calc_dist_scriptmole-group taxi calc dist scripteq-

CPE	Name	Operator	Version
mole-group:taxi_calc_dist_script	mole-group taxi calc dist script	eq	-

References

osvdb.org/49695

secunia.com/advisories/32576

www.securityfocus.com/bid/32140

exchange.xforce.ibmcloud.com/vulnerabilities/46382

www.exploit-db.com/exploits/7010

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

37.7%

JSON

Related for CVE-2008-6484

cvelist1 nvd1 prion1