Lucene search
MitreCVE-2008-6656HistoryApr 07, 2009 - 2:17 p.m.
CVE-2008-6656
2009-04-0714:17:18
CWE-89
mitre
web.nvd.nist.gov
28
cve
2008
6656
sql injection
open auto classifieds
security vulnerability
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.8
Confidence
Low
EPSS
0.001
Percentile
40.3%
Multiple SQL injection vulnerabilities in Open Auto Classifieds 1.4.3b allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to listings.php and (2) the username field to login.php.
Affected configurations
Node
openautoclassifiedsopen_auto_classifiedsMatch1.4.3b
| Vendor | Product | Version | CPE |
|---|---|---|---|
| openautoclassifieds | open_auto_classifieds | 1.4.3b | cpe:2.3:a:openautoclassifieds:open_auto_classifieds:1.4.3b:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2008-6656
2009-04-07 14:17:18
exploitdb
exploitdb
Open Auto Classifieds 1.4.3b - SQL Injection
2008-05-02 00:00:00
prion
prion
Sql injection
2009-04-07 14:17:00
cvelist
cvelist
CVE-2008-6656
2009-04-07 10:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8.8
Confidence
Low
EPSS
0.001
Percentile
40.3%
Related for CVE-2008-6656