Lucene search
MitreCVE-2009-2553HistoryJul 20, 2009 - 8:00 p.m.
CVE-2009-2553
2009-07-2020:00:14
CWE-89
mitre
web.nvd.nist.gov
23
cve
2009
2553
sql injection
super simple blog script
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
8.8
Confidence
Low
EPSS
0.001
Percentile
39.7%
Multiple SQL injection vulnerabilities in comments.php in Super Simple Blog Script 2.5.4, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the entry parameter.
Affected configurations
Node
supersimplesuper_simple_blog_scriptMatch2.5.4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| supersimple | super_simple_blog_script | 2.5.4 | cpe:2.3:a:supersimple:super_simple_blog_script:2.5.4:*:*:*:*:*:*:* |
Related
prion
prion
Sql injection
2009-07-20 20:00:00
nessus
nessus
Super Simple Blog Script entry Parameter SQL Injection
2010-10-20 00:00:00
exploitdb
exploitdb
Super Simple Blog Script 2.5.4 - 'entry' SQL Injection
2009-07-17 00:00:00
nvd
nvd
CVE-2009-2553
2009-07-20 20:00:14
cvelist
cvelist
CVE-2009-2553
2009-07-20 19:25:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
8.8
Confidence
Low
EPSS
0.001
Percentile
39.7%
Related for CVE-2009-2553