Lucene search

[email protected]CVE-2009-3184

HistoryOct 03, 2022 - 4:23 p.m.

CVE-2009-3184

2022-10-0316:23:55

CWE-89

[email protected]

web.nvd.nist.gov

pirates of the caribbean

e-gold game series

sql injection

remote attackers

arbitrary sql commands

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.5 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

58.4%

JSON

Multiple SQL injection vulnerabilities in index.php in Pirates of The Caribbean in the E-Gold Game Series allow remote attackers to execute arbitrary SQL commands via the (1) x and (2) y parameters.

Affected configurations

NVD

Node

graparie-gold_game_series_pirates_of_the_caribbeanMatch-

CPENameOperatorVersion
grapari:e-gold_game_series_pirates_of_the_caribbeangrapari e-gold game series pirates of the caribbeaneq-

CPE	Name	Operator	Version
grapari:e-gold_game_series_pirates_of_the_caribbean	grapari e-gold game series pirates of the caribbean	eq	-

References

packetstormsecurity.org/0908-exploits/egoldgame-sql.txt

secunia.com/advisories/36488

www.vupen.com/english/advisories/2009/2442

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.5 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

58.4%

JSON

Related for CVE-2009-3184

prion1 cvelist1 nvd1