Lucene search
MitreCVE-2008-6627HistoryApr 06, 2009 - 9:30 p.m.
CVE-2008-6627
2009-04-0621:30:00
CWE-89
mitre
web.nvd.nist.gov
39
sql injection
getin.php
webbdomain webshop
remote attackers
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.001
Percentile
47.7%
SQL injection vulnerability in getin.php in WEBBDOMAIN WebShop 1.2, 1.1, 1.02, and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter.
Affected configurations
Node
webbdomainwebshopRange≤1.2
ORwebbdomainwebshopMatch1.1
ORwebbdomainwebshopMatch1.02
| Vendor | Product | Version | CPE |
|---|---|---|---|
| webbdomain | webshop | * | cpe:2.3:a:webbdomain:webshop:*:*:*:*:*:*:*:* |
| webbdomain | webshop | 1.1 | cpe:2.3:a:webbdomain:webshop:1.1:*:*:*:*:*:*:* |
| webbdomain | webshop | 1.02 | cpe:2.3:a:webbdomain:webshop:1.02:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2008-6627
2009-04-06 21:00:00
prion
prion
Sql injection
2009-04-06 21:30:00
exploitdb
exploitdb
WEBBDOMAIN Webshop 1.02 - Authentication Bypass
2008-11-04 00:00:00
nvd
nvd
CVE-2008-6627
2009-04-06 21:30:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.7
Confidence
Low
EPSS
0.001
Percentile
47.7%
Related for CVE-2008-6627