Lucene search
HistoryMay 04, 2009 - 7:00 p.m.
CVE-2008-6789
cve-2008-6789
sql injection
minddezign photo gallery 2.2
remote attackers
admin module
nvd
5.1 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
8.6 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
68.6%
SQL injection vulnerability in MindDezign Photo Gallery 2.2 allows remote attackers to execute arbitrary SQL commands via the username parameter in a login action to the admin module in index.php, a different vector than CVE-2008-6788.
Affected configurations
Node
minddezignphoto_galleryMatch2.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| minddezign:photo_gallery | minddezign photo gallery | eq | 2.2 |
Related
cvelist
cvelist
CVE-2008-6789
2009-05-04 18:22:00
CVE-2008-6788
2009-05-04 18:22:00
nvd
nvd
CVE-2008-6789
2009-05-04 19:00:00
CVE-2008-6788
2009-05-04 19:00:00
prion
prion
Sql injection
2009-05-04 19:00:00
Sql injection
2009-05-04 19:00:00
cve
cve
CVE-2008-6788
2009-05-04 19:00:00
5.1 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
8.6 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
68.6%
Related for CVE-2008-6789